CVE-2018-7780

CRITICAL

Schneider Electric Pelco Sarix Professional <3.29.69 - Buffer Overflow

Title source: llm

Description

In Schneider Electric Pelco Sarix Professional 1st generation cameras with firmware versions prior to 3.29.69, a buffer overflow vulnerability exist in cgi program "set".

References (1)

Core 1

Core References

Vendor Advisory x_refsource_confirm

https://www.schneider-electric.com/en/download/document/SEVD-2018-114-01/

Scores

CVSS v3 9.8

EPSS 0.0052

EPSS Percentile 66.9%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-119

Status published

Products (20)

schneider-electric/ibp1110-1er_firmware < 3.29.69

schneider-electric/ibp219-1er_firmware < 3.29.69

schneider-electric/ibp319-1er_firmware < 3.29.69

schneider-electric/ibp519-1er_firmware < 3.29.69

schneider-electric/ibps110-1er_firmware < 3.29.69

schneider-electric/imp1110-1_firmware < 3.29.69

schneider-electric/imp1110-1e_firmware < 3.29.69

schneider-electric/imp1110-1er_firmware < 3.29.69

schneider-electric/imp219-1_firmware < 3.29.69

schneider-electric/imp219-1e_firmware < 3.29.69

... and 10 more

Published Jul 03, 2018

Tracked Since Feb 18, 2026