CVE-2021-33544
HIGH EXPLOITED IN THE WILD NUCLEIMultiple Camera Devices - Command Injection
Title source: llmDescription
Multiple camera devices by UDP Technology, Geutebrück and other vendors are vulnerable to command injection, which may allow an attacker to remotely execute arbitrary code.
Exploits (1)
metasploit
WORKING POC
EXCELLENT
by Titouan Lazard, Ibrahim Ayadhi, Sébastien Charbonnier · rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/geutebruck_cmdinject_cve_2021_335xx.rb
Nuclei Templates (1)
Geutebruck - Remote Command Injection
HIGHby gy741
Scores
CVSS v3
7.2
EPSS
0.9425
EPSS Percentile
99.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Details
VulnCheck KEV
2021-09-20
InTheWild.io
2021-04-18
CWE
CWE-78
Status
published
Products (48)
geutebrueck/g-cam_ebc-2110_firmware
1.12.13.2
geutebrueck/g-cam_ebc-2110_firmware
1.12.14.5
geutebrueck/g-cam_ebc-2110_firmware
< 1.12.0.27
geutebrueck/g-cam_ebc-2111_firmware
1.12.13.2
geutebrueck/g-cam_ebc-2111_firmware
1.12.14.5
geutebrueck/g-cam_ebc-2111_firmware
< 1.12.0.27
geutebrueck/g-cam_ebc-2112_firmware
1.12.13.2
geutebrueck/g-cam_ebc-2112_firmware
1.12.14.5
geutebrueck/g-cam_ebc-2112_firmware
< 1.12.0.27
geutebrueck/g-cam_efd-2241_firmware
1.12.13.2
... and 38 more
Published
Sep 13, 2021
Tracked Since
Feb 18, 2026