Search criteria
2 vulnerabilities found for md-3025 by airlive
VAR-201712-0032
Vulnerability from variot - Updated: 2025-04-20 23:22cgi-bin/mft/wireless_mft.cgi in AirLive BU-2015 with firmware 1.03.18 16.06.2014, AirLive BU-3026 with firmware 1.43 21.08.2014, AirLive MD-3025 with firmware 1.81 21.08.2014, AirLive WL-2000CAM with firmware LM.1.6.18 14.10.2011, and AirLive POE-200CAM v2 with firmware LM.1.6.17.01 uses hard-coded credentials in the embedded Boa web server, which allows remote attackers to obtain user credentials via crafted HTTP requests. plural AirLive Product firmware includes OS A command injection vulnerability exists.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. OvisLink Airlive IP Cameras WL-2000CAM and Airlive IP Cameras POE-200CAM are OvisLink's network camera products. Operating system command injection vulnerability exists in the /cgi-bin/mft/wireless_mft.cgi binary of OvisLink AirLive IP Cameras WL-2000CAM and Airlive IP Cameras POE-200CAM. The attacker can use the hard-coded certificate in the configuration file of the Boa Web server to use the vulnerability to decode the certificate and obtain access rights to the device. Multiple AirLive Products are prone to multiple OS command-injection vulnerabilities. Successfully exploiting these issues may allow an attacker to execute arbitrary OS commands in the context of the affected application. The following versions and products are affected: AirLive BU-2015 with firmware version 1.03.18 16.06.2014; AirLive BU-3026 with firmware version 1.43 21.08.2014; AirLive MD-3025 with firmware version 1.81 21.08.2014; .1.6.18 AirLive WL-2000CAM with firmware version 14.10.2011; AirLive POE-200CAM v2 with firmware version LM.1.6.17.01
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-201712-0032",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "poe-200cam v2",
"scope": "eq",
"trust": 1.6,
"vendor": "airlive",
"version": "lm.1.6.17.01"
},
{
"model": "wl-2000cam",
"scope": "eq",
"trust": 1.6,
"vendor": "airlive",
"version": "lm.1.6.18_14.10.2011"
},
{
"model": "md-3025",
"scope": "eq",
"trust": 1.6,
"vendor": "airlive",
"version": "1.81_21.08.2014"
},
{
"model": "bu-2015",
"scope": "eq",
"trust": 1.6,
"vendor": "airlive",
"version": "1.03.18_16.06.2014"
},
{
"model": "bu-3026",
"scope": "eq",
"trust": 1.6,
"vendor": "airlive",
"version": "1.43_21.08.2014"
},
{
"model": "airlive bu-2015",
"scope": "eq",
"trust": 0.8,
"vendor": "ovislink corp",
"version": "1.03.18 16.06.2014"
},
{
"model": "airlive bu-3026",
"scope": "eq",
"trust": 0.8,
"vendor": "ovislink corp",
"version": "1.43 21.08.2014"
},
{
"model": "airlive md-3025",
"scope": "eq",
"trust": 0.8,
"vendor": "ovislink corp",
"version": "1.81 21.08.2014"
},
{
"model": "airlive poe-200camv2",
"scope": "eq",
"trust": 0.8,
"vendor": "ovislink corp",
"version": "lm.1.6.17.01"
},
{
"model": "airlive wl-2000cam",
"scope": "eq",
"trust": 0.8,
"vendor": "ovislink corp",
"version": "lm.1.6.18 14.10.2011"
},
{
"model": "airlive ip cameras wl-2000cam/airlive ip cameras poe-200cam",
"scope": null,
"trust": 0.6,
"vendor": "ovislink",
"version": null
},
{
"model": "wl-2000cam lm.1.6.18.14.10.2011",
"scope": null,
"trust": 0.3,
"vendor": "airlive",
"version": null
},
{
"model": "poe-200cam lm.1.6.17.01",
"scope": "eq",
"trust": 0.3,
"vendor": "airlive",
"version": "v2"
},
{
"model": "md-3025",
"scope": "eq",
"trust": 0.3,
"vendor": "airlive",
"version": "1.81.21.08.2014"
},
{
"model": "bu-3026",
"scope": "eq",
"trust": 0.3,
"vendor": "airlive",
"version": "1.43.21.08.2014"
},
{
"model": "bu-2015",
"scope": "eq",
"trust": 0.3,
"vendor": "airlive",
"version": "1.03.18.16.06.2014"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2015-04485"
},
{
"db": "BID",
"id": "75559"
},
{
"db": "JVNDB",
"id": "JVNDB-2014-008454"
},
{
"db": "CNNVD",
"id": "CNNVD-201507-354"
},
{
"db": "NVD",
"id": "CVE-2014-8389"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"cpe_match": [
{
"cpe22Uri": "cpe:/o:airlive:bu-2015_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:airlive:bu-3026_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:airlive:md-3025_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:airlive:poe-200cam_v2_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:airlive:wl-2000cam_firmware",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2014-008454"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Nahuel Riva from Core Security Exploit Writing Team",
"sources": [
{
"db": "BID",
"id": "75559"
},
{
"db": "CNNVD",
"id": "CNNVD-201507-354"
}
],
"trust": 0.9
},
"cve": "CVE-2014-8389",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "nvd@nist.gov",
"availabilityImpact": "COMPLETE",
"baseScore": 10.0,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 10.0,
"id": "CVE-2014-8389",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "HIGH",
"trust": 1.9,
"vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "CNVD",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "CNVD-2015-04485",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "HIGH",
"trust": 0.6,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "COMPLETE",
"baseScore": 10.0,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 10.0,
"id": "VHN-76334",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "HIGH",
"trust": 0.1,
"vectorString": "AV:N/AC:L/AU:N/C:C/I:C/A:C",
"version": "2.0"
}
],
"cvssV3": [
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"author": "nvd@nist.gov",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"exploitabilityScore": 3.9,
"id": "CVE-2014-8389",
"impactScore": 5.9,
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"trust": 1.8,
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
}
],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2014-8389",
"trust": 1.0,
"value": "CRITICAL"
},
{
"author": "NVD",
"id": "CVE-2014-8389",
"trust": 0.8,
"value": "Critical"
},
{
"author": "CNVD",
"id": "CNVD-2015-04485",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "CNNVD",
"id": "CNNVD-201507-354",
"trust": 0.6,
"value": "CRITICAL"
},
{
"author": "VULHUB",
"id": "VHN-76334",
"trust": 0.1,
"value": "HIGH"
},
{
"author": "VULMON",
"id": "CVE-2014-8389",
"trust": 0.1,
"value": "HIGH"
}
]
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2015-04485"
},
{
"db": "VULHUB",
"id": "VHN-76334"
},
{
"db": "VULMON",
"id": "CVE-2014-8389"
},
{
"db": "JVNDB",
"id": "JVNDB-2014-008454"
},
{
"db": "CNNVD",
"id": "CNNVD-201507-354"
},
{
"db": "NVD",
"id": "CVE-2014-8389"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "cgi-bin/mft/wireless_mft.cgi in AirLive BU-2015 with firmware 1.03.18 16.06.2014, AirLive BU-3026 with firmware 1.43 21.08.2014, AirLive MD-3025 with firmware 1.81 21.08.2014, AirLive WL-2000CAM with firmware LM.1.6.18 14.10.2011, and AirLive POE-200CAM v2 with firmware LM.1.6.17.01 uses hard-coded credentials in the embedded Boa web server, which allows remote attackers to obtain user credentials via crafted HTTP requests. plural AirLive Product firmware includes OS A command injection vulnerability exists.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. OvisLink Airlive IP Cameras WL-2000CAM and Airlive IP Cameras POE-200CAM are OvisLink\u0027s network camera products. Operating system command injection vulnerability exists in the /cgi-bin/mft/wireless_mft.cgi binary of OvisLink AirLive IP Cameras WL-2000CAM and Airlive IP Cameras POE-200CAM. The attacker can use the hard-coded certificate in the configuration file of the Boa Web server to use the vulnerability to decode the certificate and obtain access rights to the device. Multiple AirLive Products are prone to multiple OS command-injection vulnerabilities. \nSuccessfully exploiting these issues may allow an attacker to execute arbitrary OS commands in the context of the affected application. The following versions and products are affected: AirLive BU-2015 with firmware version 1.03.18 16.06.2014; AirLive BU-3026 with firmware version 1.43 21.08.2014; AirLive MD-3025 with firmware version 1.81 21.08.2014; .1.6.18 AirLive WL-2000CAM with firmware version 14.10.2011; AirLive POE-200CAM v2 with firmware version LM.1.6.17.01",
"sources": [
{
"db": "NVD",
"id": "CVE-2014-8389"
},
{
"db": "JVNDB",
"id": "JVNDB-2014-008454"
},
{
"db": "CNVD",
"id": "CNVD-2015-04485"
},
{
"db": "BID",
"id": "75559"
},
{
"db": "VULHUB",
"id": "VHN-76334"
},
{
"db": "VULMON",
"id": "CVE-2014-8389"
}
],
"trust": 2.61
},
"exploit_availability": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/exploit_availability#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"reference": "https://www.scap.org.cn/vuln/vhn-76334",
"trust": 0.1,
"type": "unknown"
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-76334"
}
]
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2014-8389",
"trust": 3.5
},
{
"db": "BID",
"id": "75559",
"trust": 2.7
},
{
"db": "PACKETSTORM",
"id": "132585",
"trust": 1.8
},
{
"db": "JVNDB",
"id": "JVNDB-2014-008454",
"trust": 0.8
},
{
"db": "CNNVD",
"id": "CNNVD-201507-354",
"trust": 0.7
},
{
"db": "CNVD",
"id": "CNVD-2015-04485",
"trust": 0.6
},
{
"db": "VULHUB",
"id": "VHN-76334",
"trust": 0.1
},
{
"db": "VULMON",
"id": "CVE-2014-8389",
"trust": 0.1
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2015-04485"
},
{
"db": "VULHUB",
"id": "VHN-76334"
},
{
"db": "VULMON",
"id": "CVE-2014-8389"
},
{
"db": "BID",
"id": "75559"
},
{
"db": "JVNDB",
"id": "JVNDB-2014-008454"
},
{
"db": "CNNVD",
"id": "CNNVD-201507-354"
},
{
"db": "NVD",
"id": "CVE-2014-8389"
}
]
},
"id": "VAR-201712-0032",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "CNVD",
"id": "CNVD-2015-04485"
},
{
"db": "VULHUB",
"id": "VHN-76334"
}
],
"trust": 1.7
},
"iot_taxonomy": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"category": [
"Network device"
],
"sub_category": null,
"trust": 0.6
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2015-04485"
}
]
},
"last_update_date": "2025-04-20T23:22:07.875000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "Top Page",
"trust": 0.8,
"url": "http://www.airlive.com/"
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2014-008454"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-78",
"trust": 1.9
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-76334"
},
{
"db": "JVNDB",
"id": "JVNDB-2014-008454"
},
{
"db": "NVD",
"id": "CVE-2014-8389"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 2.9,
"url": "https://www.coresecurity.com/advisories/airlive-multiple-products-os-command-injection"
},
{
"trust": 2.5,
"url": "http://www.securityfocus.com/bid/75559"
},
{
"trust": 1.9,
"url": "http://packetstormsecurity.com/files/132585/airlive-remote-command-injection.html"
},
{
"trust": 1.8,
"url": "http://seclists.org/fulldisclosure/2015/jul/29"
},
{
"trust": 1.2,
"url": "http://www.securityfocus.com/archive/1/535938/100/0/threaded"
},
{
"trust": 0.8,
"url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-8389"
},
{
"trust": 0.8,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-8389"
},
{
"trust": 0.6,
"url": "http://www.securityfocus.com/archive/1/archive/1/535938/100/0/threaded"
},
{
"trust": 0.3,
"url": "http://www.airlive.com/"
},
{
"trust": 0.1,
"url": "https://cwe.mitre.org/data/definitions/78.html"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2015-04485"
},
{
"db": "VULHUB",
"id": "VHN-76334"
},
{
"db": "VULMON",
"id": "CVE-2014-8389"
},
{
"db": "BID",
"id": "75559"
},
{
"db": "JVNDB",
"id": "JVNDB-2014-008454"
},
{
"db": "CNNVD",
"id": "CNNVD-201507-354"
},
{
"db": "NVD",
"id": "CVE-2014-8389"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "CNVD",
"id": "CNVD-2015-04485"
},
{
"db": "VULHUB",
"id": "VHN-76334"
},
{
"db": "VULMON",
"id": "CVE-2014-8389"
},
{
"db": "BID",
"id": "75559"
},
{
"db": "JVNDB",
"id": "JVNDB-2014-008454"
},
{
"db": "CNNVD",
"id": "CNNVD-201507-354"
},
{
"db": "NVD",
"id": "CVE-2014-8389"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2015-07-15T00:00:00",
"db": "CNVD",
"id": "CNVD-2015-04485"
},
{
"date": "2017-12-28T00:00:00",
"db": "VULHUB",
"id": "VHN-76334"
},
{
"date": "2017-12-28T00:00:00",
"db": "VULMON",
"id": "CVE-2014-8389"
},
{
"date": "2015-07-06T00:00:00",
"db": "BID",
"id": "75559"
},
{
"date": "2018-01-29T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2014-008454"
},
{
"date": "2015-07-13T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201507-354"
},
{
"date": "2017-12-28T02:29:03.113000",
"db": "NVD",
"id": "CVE-2014-8389"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2015-07-15T00:00:00",
"db": "CNVD",
"id": "CNVD-2015-04485"
},
{
"date": "2018-10-09T00:00:00",
"db": "VULHUB",
"id": "VHN-76334"
},
{
"date": "2018-10-09T00:00:00",
"db": "VULMON",
"id": "CVE-2014-8389"
},
{
"date": "2015-07-06T00:00:00",
"db": "BID",
"id": "75559"
},
{
"date": "2018-01-29T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2014-008454"
},
{
"date": "2018-01-02T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201507-354"
},
{
"date": "2025-04-20T01:37:25.860000",
"db": "NVD",
"id": "CVE-2014-8389"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201507-354"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "plural AirLive In product firmware OS Command injection vulnerability",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2014-008454"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "operating system commend injection",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201507-354"
}
],
"trust": 0.6
}
}
VAR-201707-0080
Vulnerability from variot - Updated: 2025-04-20 23:22cgi_test.cgi in AirLive BU-2015 with firmware 1.03.18, BU-3026 with firmware 1.43, and MD-3025 with firmware 1.81 allows remote attackers to execute arbitrary OS commands via shell metacharacters after an "&" (ampersand) in the write_mac write_pid, write_msn, write_tan, or write_hdv parameter. AirLive BU-2015 , BU-3026 , MD-3025 The firmware of OS A command injection vulnerability exists.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Airlive is an IP surveillance network solution provider and security product vendor. An attacker could use this vulnerability to inject arbitrary commands by sending a constructed request to the file. Multiple AirLive Products are prone to multiple OS command-injection vulnerabilities. OvisLink AirLive IP Cameras MD-3025, IP Cameras BU-3026 and IP Cameras BU-2015 are network camera products of OvisLink. The following products are affected: OvisLink AirLive IP Cameras MD-3025 with firmware version 1.81, IP Cameras BU-3026 with firmware version 1.43, IP Cameras BU-2015 with firmware version 1.03.18
Show details on source website{
"affected_products": {
"_id": null,
"data": [
{
"_id": null,
"model": "bu-3026",
"scope": "eq",
"trust": 1.6,
"vendor": "airlive",
"version": "1.43"
},
{
"_id": null,
"model": "bu-2015",
"scope": "eq",
"trust": 1.6,
"vendor": "airlive",
"version": "1.03.18"
},
{
"_id": null,
"model": "md-3025",
"scope": "eq",
"trust": 1.6,
"vendor": "airlive",
"version": "1.81"
},
{
"_id": null,
"model": "airlive bu-2015",
"scope": null,
"trust": 0.8,
"vendor": "ovislink corp",
"version": null
},
{
"_id": null,
"model": "airlive bu-3026",
"scope": null,
"trust": 0.8,
"vendor": "ovislink corp",
"version": null
},
{
"_id": null,
"model": "airlive md-3025",
"scope": null,
"trust": 0.8,
"vendor": "ovislink corp",
"version": null
},
{
"_id": null,
"model": "md-3025/bu-3026/bu-2015",
"scope": null,
"trust": 0.6,
"vendor": "airlive",
"version": null
},
{
"_id": null,
"model": "wl-2000cam lm.1.6.18.14.10.2011",
"scope": null,
"trust": 0.3,
"vendor": "airlive",
"version": null
},
{
"_id": null,
"model": "poe-200cam lm.1.6.17.01",
"scope": "eq",
"trust": 0.3,
"vendor": "airlive",
"version": "v2"
},
{
"_id": null,
"model": "md-3025",
"scope": "eq",
"trust": 0.3,
"vendor": "airlive",
"version": "1.81.21.08.2014"
},
{
"_id": null,
"model": "bu-3026",
"scope": "eq",
"trust": 0.3,
"vendor": "airlive",
"version": "1.43.21.08.2014"
},
{
"_id": null,
"model": "bu-2015",
"scope": "eq",
"trust": 0.3,
"vendor": "airlive",
"version": "1.03.18.16.06.2014"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2015-04575"
},
{
"db": "BID",
"id": "75559"
},
{
"db": "JVNDB",
"id": "JVNDB-2015-007668"
},
{
"db": "CNNVD",
"id": "CNNVD-201507-355"
},
{
"db": "NVD",
"id": "CVE-2015-2279"
}
]
},
"configurations": {
"_id": null,
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"cpe_match": [
{
"cpe22Uri": "cpe:/o:airlive:bu-2015_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:airlive:bu-3026_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:airlive:md-3025_firmware",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2015-007668"
}
]
},
"credits": {
"_id": null,
"data": "Nahuel Riva from Core Security Exploit Writing Team",
"sources": [
{
"db": "BID",
"id": "75559"
},
{
"db": "CNNVD",
"id": "CNNVD-201507-355"
}
],
"trust": 0.9
},
"cve": "CVE-2015-2279",
"cvss": {
"_id": null,
"data": [
{
"cvssV2": [
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "nvd@nist.gov",
"availabilityImpact": "COMPLETE",
"baseScore": 10.0,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 10.0,
"id": "CVE-2015-2279",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "HIGH",
"trust": 1.9,
"vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "CNVD",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "CNVD-2015-04575",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "HIGH",
"trust": 0.6,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "COMPLETE",
"baseScore": 10.0,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 10.0,
"id": "VHN-80240",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "HIGH",
"trust": 0.1,
"vectorString": "AV:N/AC:L/AU:N/C:C/I:C/A:C",
"version": "2.0"
}
],
"cvssV3": [
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"author": "nvd@nist.gov",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"exploitabilityScore": 3.9,
"id": "CVE-2015-2279",
"impactScore": 5.9,
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"trust": 1.8,
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
}
],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2015-2279",
"trust": 1.0,
"value": "CRITICAL"
},
{
"author": "NVD",
"id": "CVE-2015-2279",
"trust": 0.8,
"value": "Critical"
},
{
"author": "CNVD",
"id": "CNVD-2015-04575",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "CNNVD",
"id": "CNNVD-201507-355",
"trust": 0.6,
"value": "CRITICAL"
},
{
"author": "VULHUB",
"id": "VHN-80240",
"trust": 0.1,
"value": "HIGH"
},
{
"author": "VULMON",
"id": "CVE-2015-2279",
"trust": 0.1,
"value": "HIGH"
}
]
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2015-04575"
},
{
"db": "VULHUB",
"id": "VHN-80240"
},
{
"db": "VULMON",
"id": "CVE-2015-2279"
},
{
"db": "JVNDB",
"id": "JVNDB-2015-007668"
},
{
"db": "CNNVD",
"id": "CNNVD-201507-355"
},
{
"db": "NVD",
"id": "CVE-2015-2279"
}
]
},
"description": {
"_id": null,
"data": "cgi_test.cgi in AirLive BU-2015 with firmware 1.03.18, BU-3026 with firmware 1.43, and MD-3025 with firmware 1.81 allows remote attackers to execute arbitrary OS commands via shell metacharacters after an \"\u0026\" (ampersand) in the write_mac write_pid, write_msn, write_tan, or write_hdv parameter. AirLive BU-2015 , BU-3026 , MD-3025 The firmware of OS A command injection vulnerability exists.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Airlive is an IP surveillance network solution provider and security product vendor. An attacker could use this vulnerability to inject arbitrary commands by sending a constructed request to the file. Multiple AirLive Products are prone to multiple OS command-injection vulnerabilities. OvisLink AirLive IP Cameras MD-3025, IP Cameras BU-3026 and IP Cameras BU-2015 are network camera products of OvisLink. The following products are affected: OvisLink AirLive IP Cameras MD-3025 with firmware version 1.81, IP Cameras BU-3026 with firmware version 1.43, IP Cameras BU-2015 with firmware version 1.03.18",
"sources": [
{
"db": "NVD",
"id": "CVE-2015-2279"
},
{
"db": "JVNDB",
"id": "JVNDB-2015-007668"
},
{
"db": "CNVD",
"id": "CNVD-2015-04575"
},
{
"db": "BID",
"id": "75559"
},
{
"db": "VULHUB",
"id": "VHN-80240"
},
{
"db": "VULMON",
"id": "CVE-2015-2279"
}
],
"trust": 2.61
},
"exploit_availability": {
"_id": null,
"data": [
{
"reference": "https://www.scap.org.cn/vuln/vhn-80240",
"trust": 0.1,
"type": "unknown"
},
{
"reference": "https://vulmon.com/exploitdetails?qidtp=exploitdb\u0026qid=37532",
"trust": 0.1,
"type": "exploit"
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-80240"
},
{
"db": "VULMON",
"id": "CVE-2015-2279"
}
]
},
"external_ids": {
"_id": null,
"data": [
{
"db": "NVD",
"id": "CVE-2015-2279",
"trust": 3.5
},
{
"db": "BID",
"id": "75559",
"trust": 2.1
},
{
"db": "EXPLOIT-DB",
"id": "37532",
"trust": 1.8
},
{
"db": "PACKETSTORM",
"id": "132585",
"trust": 1.8
},
{
"db": "JVNDB",
"id": "JVNDB-2015-007668",
"trust": 0.8
},
{
"db": "CNNVD",
"id": "CNNVD-201507-355",
"trust": 0.7
},
{
"db": "CNVD",
"id": "CNVD-2015-04575",
"trust": 0.6
},
{
"db": "VULHUB",
"id": "VHN-80240",
"trust": 0.1
},
{
"db": "VULMON",
"id": "CVE-2015-2279",
"trust": 0.1
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2015-04575"
},
{
"db": "VULHUB",
"id": "VHN-80240"
},
{
"db": "VULMON",
"id": "CVE-2015-2279"
},
{
"db": "BID",
"id": "75559"
},
{
"db": "JVNDB",
"id": "JVNDB-2015-007668"
},
{
"db": "CNNVD",
"id": "CNNVD-201507-355"
},
{
"db": "NVD",
"id": "CVE-2015-2279"
}
]
},
"id": "VAR-201707-0080",
"iot": {
"_id": null,
"data": true,
"sources": [
{
"db": "CNVD",
"id": "CNVD-2015-04575"
},
{
"db": "VULHUB",
"id": "VHN-80240"
}
],
"trust": 1.7
},
"iot_taxonomy": {
"_id": null,
"data": [
{
"category": [
"Network device"
],
"sub_category": null,
"trust": 0.6
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2015-04575"
}
]
},
"last_update_date": "2025-04-20T23:22:07.837000Z",
"patch": {
"_id": null,
"data": [
{
"title": "Top Page",
"trust": 0.8,
"url": "http://www.airlive.com/"
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2015-007668"
}
]
},
"problemtype_data": {
"_id": null,
"data": [
{
"problemtype": "CWE-78",
"trust": 1.9
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-80240"
},
{
"db": "JVNDB",
"id": "JVNDB-2015-007668"
},
{
"db": "NVD",
"id": "CVE-2015-2279"
}
]
},
"references": {
"_id": null,
"data": [
{
"trust": 2.9,
"url": "https://www.coresecurity.com/advisories/airlive-multiple-products-os-command-injection"
},
{
"trust": 1.9,
"url": "http://www.securityfocus.com/bid/75559"
},
{
"trust": 1.9,
"url": "https://www.exploit-db.com/exploits/37532/"
},
{
"trust": 1.8,
"url": "http://seclists.org/fulldisclosure/2015/jul/29"
},
{
"trust": 1.8,
"url": "http://packetstormsecurity.com/files/132585/airlive-remote-command-injection.html"
},
{
"trust": 1.2,
"url": "http://www.securityfocus.com/archive/1/535938/100/0/threaded"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-2279"
},
{
"trust": 0.8,
"url": "https://nvd.nist.gov/vuln/detail/cve-2015-2279"
},
{
"trust": 0.6,
"url": "https://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-2279"
},
{
"trust": 0.6,
"url": "http://www.securityfocus.com/archive/1/535938"
},
{
"trust": 0.6,
"url": "http://www.securityfocus.com/archive/1/archive/1/535938/100/0/threaded"
},
{
"trust": 0.3,
"url": "http://www.airlive.com/"
},
{
"trust": 0.1,
"url": "https://cwe.mitre.org/data/definitions/78.html"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2015-04575"
},
{
"db": "VULHUB",
"id": "VHN-80240"
},
{
"db": "VULMON",
"id": "CVE-2015-2279"
},
{
"db": "BID",
"id": "75559"
},
{
"db": "JVNDB",
"id": "JVNDB-2015-007668"
},
{
"db": "CNNVD",
"id": "CNNVD-201507-355"
},
{
"db": "NVD",
"id": "CVE-2015-2279"
}
]
},
"sources": {
"_id": null,
"data": [
{
"db": "CNVD",
"id": "CNVD-2015-04575",
"ident": null
},
{
"db": "VULHUB",
"id": "VHN-80240",
"ident": null
},
{
"db": "VULMON",
"id": "CVE-2015-2279",
"ident": null
},
{
"db": "BID",
"id": "75559",
"ident": null
},
{
"db": "JVNDB",
"id": "JVNDB-2015-007668",
"ident": null
},
{
"db": "CNNVD",
"id": "CNNVD-201507-355",
"ident": null
},
{
"db": "NVD",
"id": "CVE-2015-2279",
"ident": null
}
]
},
"sources_release_date": {
"_id": null,
"data": [
{
"date": "2015-07-16T00:00:00",
"db": "CNVD",
"id": "CNVD-2015-04575",
"ident": null
},
{
"date": "2017-07-25T00:00:00",
"db": "VULHUB",
"id": "VHN-80240",
"ident": null
},
{
"date": "2017-07-25T00:00:00",
"db": "VULMON",
"id": "CVE-2015-2279",
"ident": null
},
{
"date": "2015-07-06T00:00:00",
"db": "BID",
"id": "75559",
"ident": null
},
{
"date": "2017-08-28T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2015-007668",
"ident": null
},
{
"date": "2015-07-13T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201507-355",
"ident": null
},
{
"date": "2017-07-25T01:29:00.420000",
"db": "NVD",
"id": "CVE-2015-2279",
"ident": null
}
]
},
"sources_update_date": {
"_id": null,
"data": [
{
"date": "2015-07-16T00:00:00",
"db": "CNVD",
"id": "CNVD-2015-04575",
"ident": null
},
{
"date": "2018-10-09T00:00:00",
"db": "VULHUB",
"id": "VHN-80240",
"ident": null
},
{
"date": "2018-10-09T00:00:00",
"db": "VULMON",
"id": "CVE-2015-2279",
"ident": null
},
{
"date": "2015-07-06T00:00:00",
"db": "BID",
"id": "75559",
"ident": null
},
{
"date": "2017-08-28T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2015-007668",
"ident": null
},
{
"date": "2017-07-25T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201507-355",
"ident": null
},
{
"date": "2025-04-20T01:37:25.860000",
"db": "NVD",
"id": "CVE-2015-2279",
"ident": null
}
]
},
"threat_type": {
"_id": null,
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201507-355"
}
],
"trust": 0.6
},
"title": {
"_id": null,
"data": "plural AirLive In product firmware OS Command injection vulnerability",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2015-007668"
}
],
"trust": 0.8
},
"type": {
"_id": null,
"data": "operating system commend injection",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201507-355"
}
],
"trust": 0.6
}
}