CVE-2021-33549

HIGH EXPLOITED IN THE WILD

Multiple Camera Devices - Buffer Overflow

Title source: llm

Exploitation Summary

CVE-2021-33549 has been observed exploited in the wild (reported by VulnCheck KEV, InTheWild.io). EIP tracks 1 public exploit from researchers including Titouan Lazard - RandoriSec, Ibrahim Ayadhi - RandoriSec, including a Metasploit module exploits/linux/http/geutebruck_instantrec_bof.

AI-analyzed exploit summary This Metasploit module exploits a buffer overflow in the 'action' parameter of Geutebruck instantrec.cgi, leading to remote code execution as root. It uses ROP gadgets to bypass memory protections and execute a payload.

Description

Multiple camera devices by UDP Technology, Geutebrück and other vendors are vulnerable to a stack-based buffer overflow condition in the action parameter, which may allow an attacker to remotely execute arbitrary code.

Exploits (1)

metasploit WORKING POC EXCELLENT

by Titouan Lazard - RandoriSec, Ibrahim Ayadhi - RandoriSec · rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/geutebruck_instantrec_bof.rb

View Code ZIP pw:eip

This Metasploit module exploits a buffer overflow in the 'action' parameter of Geutebruck instantrec.cgi, leading to remote code execution as root. It uses ROP gadgets to bypass memory protections and execute a payload.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Geutebruck G-Cam EEC-2xxx, G-Code EBC-21xx, EFD-22xx, ETHC-22xx, EWPC-22xx (firmware versions 1.12.0.27, 1.12.13.2, 1.12.14.5)

No auth needed

Prerequisites: Network access to the target device · Target device running vulnerable firmware

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (3)

Core 3

Core References

Exploit, Third Party Advisory x_refsource_confirm

https://www.randorisec.fr/fr/udp-technology-ip-camera-vulnerabilities/

Third Party Advisory, US Government Resource x_refsource_confirm

https://us-cert.cisa.gov/ics/advisories/icsa-21-208-03

Exploit, Third Party Advisory x_refsource_misc

http://packetstormsecurity.com/files/164191/Geutebruck-instantrec-Remote-Command-Execution.html

Scores

CVSS v3 7.2

EPSS 0.6619

EPSS Percentile 99.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Details

VulnCheck KEV 2023-10-09

InTheWild.io 2023-10-10

CWE

CWE-121

Status published

Products (48)

geutebrueck/g-cam_ebc-2110_firmware 1.12.13.2

geutebrueck/g-cam_ebc-2110_firmware 1.12.14.5

geutebrueck/g-cam_ebc-2110_firmware < 1.12.0.27

geutebrueck/g-cam_ebc-2111_firmware 1.12.13.2

geutebrueck/g-cam_ebc-2111_firmware 1.12.14.5

geutebrueck/g-cam_ebc-2111_firmware < 1.12.0.27

geutebrueck/g-cam_ebc-2112_firmware 1.12.13.2

geutebrueck/g-cam_ebc-2112_firmware 1.12.14.5

geutebrueck/g-cam_ebc-2112_firmware < 1.12.0.27

geutebrueck/g-cam_efd-2241_firmware 1.12.13.2

... and 38 more

Published Sep 13, 2021

Tracked Since Feb 18, 2026