CVE-2018-19082

CRITICAL

Foscam Opticam i5 - Stack-based Buffer Overflow via ONVIF SetDNS IPv4Address Field

Title source: llm
STIX 2.1

Description

An issue was discovered on Foscam Opticam i5 devices with System Firmware 1.5.2.11 and Application Firmware 2.21.1.128. The ONVIF devicemgmt SetDNS method allows remote attackers to conduct stack-based buffer overflow attacks via the IPv4Address field.

References (1)

Core 1
Core References

Scores

CVSS v3 9.8
EPSS 0.0232
EPSS Percentile 81.5%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-787
Status published
Products (4)
foscam/c2_application_firmware 2.72.1.32
foscam/c2_system_firmware 1.11.1.8
opticam/i5_application_firmware 2.21.1.128
opticam/i5_system_firmware 1.5.2.11
Published Nov 07, 2018
Tracked Since Feb 18, 2026