漏洞描述
AVTECH视频监控产品的CloudSetup.cgi文件存在后台远程命令执行漏洞,攻击者可在服务器上执行任意命令,写入后门,从而入侵服务器,获取服务器的管理员权限,危害巨大。
AVTECH 监控产品-CloudSetup.cgi-后台远程命令执行
PoC代码
暂无相关漏洞推荐
- POC CVE-2024-7029: AVTECH IP Camera - Command Injection
- POC avtech-password-disclosure: AVTECH 视频监控设备认证绕过
- POC CVE-2013-4982: AVTECH DVR - Login Verification Code Bypass
- POC avtech-dvr-exposure: AVTECH AVC798HA DVR - Information Exposure
- POC avtech-auth-bypass: AVTECH Video Surveillance Product - Authentication Bypass
- POC avtech-dvr-ssrf: AVTECH DVR - SSRF
- POC avtech-unauth-file-download: AVTECH Video Surveillance Product - Unauthenticated File Download
- AVTECH 监控产品-adcommand.cgi-后台远程命令执行
- AVTECH 监控产品-远程命令执行
- AVTECH 监控产品-SSRF
- AVTECH 监控产品-信息泄漏
- AVTECH 监控产品-验证码绕过导致暴力破解A
- AVTECH 监控产品-密码读取B