CVE-2018-17240

HIGH

Netwave IP Camera - Info Disclosure

Title source: llm

Exploitation Summary

EIP tracks 3 public exploits for CVE-2018-17240. PoCs published by Xewdy444, FenrirSec, BBge.

AI-analyzed exploit summary This repository contains a Python-based tool that exploits CVE-2018-17240 to retrieve login credentials from Netwave IP cameras by dumping memory via exposed `/proc/kcore` files. It supports multiple input methods, including direct host specification, file-based host lists, and IoT search engines like Censys, Shodan, and ZoomEye.

Description

There is a memory dump vulnerability on Netwave IP camera devices at //proc/kcore that allows an unauthenticated attacker to exfiltrate sensitive information from the network configuration (e.g., username and password).

Exploits (3)

nomisec WORKING POC 7 stars

by Xewdy444 · poc

https://github.com/Xewdy444/Netgrave

View Code ZIP pw:eip

This repository contains a Python-based tool that exploits CVE-2018-17240 to retrieve login credentials from Netwave IP cameras by dumping memory via exposed `/proc/kcore` files. It supports multiple input methods, including direct host specification, file-based host lists, and IoT search engines like Censys, Shodan, and ZoomEye.

Classification

Working Poc 95%

Attack Type

Info Leak

Complexity

Moderate

Reliability

Reliable

Target: Netwave IP Camera (unspecified version)

No auth needed

Prerequisites: Access to exposed `/proc/kcore` file on vulnerable Netwave IP cameras · API keys for Censys/Shodan/ZoomEye if using those methods

MITRE ATT&CK

T1005 - Data from Local System T1082 - System Information Discovery

devstral-2 · analyzed Feb 16, 2026 Full analysis →

nomisec WORKING POC 1 stars

by FenrirSec · poc

https://github.com/FenrirSec/CVE-2018-17240_exploit

View Code ZIP pw:eip

This exploit targets a memory leak vulnerability in Netwave IP cameras (CVE-2018-17240) to dump network configuration and credentials by accessing exposed files (/etc/RT2870STA.dat, /proc/kcore) via unauthenticated HTTP requests.

Classification

Working Poc 95%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Netwave IP Cameras (unspecified version)

No auth needed

Prerequisites: network access to vulnerable camera · exposed HTTP interface on target

MITRE ATT&CK

T1005 - Data from Local System T1119 - Automated Collection

devstral-2 · analyzed Feb 16, 2026 Full analysis →

nomisec WORKING POC

by BBge · poc

https://github.com/BBge/CVE-2018-17240

View Code ZIP pw:eip

This exploit targets CVE-2018-17240, an information disclosure vulnerability in Netwave IP cameras. It retrieves sensitive data such as WiFi credentials and attempts to dump memory via /proc/kcore to extract potential usernames and passwords.

Classification

Working Poc 95%

Attack Type

Info Leak

Complexity

Moderate

Reliability

Reliable

Target: Netwave IP Camera (firmware version unspecified)

No auth needed

Prerequisites: Network access to the vulnerable camera · Camera must be exposed on the network with default or weak configurations

MITRE ATT&CK

T1005 - Data from Local System T1087 - Account Discovery T1040 - Network Sniffing

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Broken Link x_refsource_misc

https://www.bbge.org/file/exploit.py

Exploit, Third Party Advisory x_refsource_misc

https://github.com/BBge/CVE-2018-17240/blob/main/exploit.py

View Exploit ZIP pw:eip

Third Party Advisory x_refsource_misc

https://github.com/BBge/CVE-2018-17240

Scores

CVSS v3 7.5

EPSS 0.0345

EPSS Percentile 87.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

CWE

CWE-401

Status published

Products (2)

netwavepr/indoor_ip_camera_firmware

netwavepr/outdoor_ip_camera_firmware

Published Jun 10, 2022

Tracked Since Feb 18, 2026