CVE-2017-20216

CRITICAL EXPLOITED

FLIR Thermal Camera PT-Series <8.0.0.64 - Command Injection

Title source: llm

Exploitation Summary

CVE-2017-20216 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 1 public exploit from researchers including LiquidWorm.

AI-analyzed exploit summary This exploit leverages unauthenticated command injection in FLIR PT-Series cameras via the `controllerFlirSystem.php` script. It writes a PHP shell to the target and provides interactive command execution as root.

Description

FLIR Thermal Camera PT-Series firmware version 8.0.0.64 contains multiple unauthenticated remote command injection vulnerabilities in the controllerFlirSystem.php script. Attackers can execute arbitrary system commands as root by exploiting unsanitized POST parameters in the execFlirSystem() function through shell_exec() calls. Exploitation evidence was observed by the Shadowserver Foundation on 2026-01-06 (UTC).

Exploits (1)

exploitdb WORKING POC

by LiquidWorm · bashwebappshardware

https://www.exploit-db.com/exploits/42785

View Code ZIP pw:eip

This exploit leverages unauthenticated command injection in FLIR PT-Series cameras via the `controllerFlirSystem.php` script. It writes a PHP shell to the target and provides interactive command execution as root.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: FLIR PT-Series (Firmware 8.0.0.64, Software 10.0.2.43)

No auth needed

Prerequisites: Network access to the target device · PHP shell execution enabled on the target

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5

Core References

Third Party Advisory third-party-advisory

https://www.zeroscience.mk/en/vulnerabilities/ZSL-2017-5438.php

Exploit, Third Party Advisory exploit

https://www.exploit-db.com/exploits/42785/

Exploit, Third Party Advisory exploit

https://packetstormsecurity.com/files/144321

Issue Tracking third-party-advisory

https://cxsecurity.com/issue/WLB-2017090203

Various Sources vendor-advisory patch

https://web.archive.org/web/20171011125811/https://www.flir.com/security/blog/details/?ID=87043

Scores

CVSS v3 9.8

EPSS 0.1064

EPSS Percentile 95.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable yes

Technical Impact total

Details

VulnCheck KEV 2026-01-07

CWE

CWE-78

Status published

Products (1)

FLIR Systems, Inc./FLIR Thermal Camera PT-Series 8.0.0.64

Published Jan 08, 2026

Tracked Since Feb 18, 2026