Back to KEVs

CVE-2024-8956

PTZOptics NDI and SDI Cameras /cgi-bin/param.cgi Insufficient Authentication

Basic Information

CVE State: PUBLISHED
Reserved Date: September 17, 2024
Published Date: September 17, 2024
Last Updated: November 04, 2024
Vendor: PTZOptics
Product: PT30X-SDI, PT30X-NDI
Description: PTZOptics PT30X-SDI/NDI-xx before firmware 6.3.40 is vulnerable to an insufficient authentication issue. The camera does not properly enforce authentication to /cgi-bin/param.cgi when requests are sent without an HTTP Authorization header. The result is a remote and unauthenticated attacker can leak sensitive data such as usernames, password hashes, and configurations details. Additionally, the attacker can update individual configuration values or overwrite the whole file.
Tags

CVSS Scores

CVSS v3.1

9.1 - CRITICAL

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

SSVC Information

Exploitation: active
Automatable: Yes
Technical Impact: total

Exploit Status

Exploited in the Wild: Yes (2024-11-04 00:00:00 UTC) Source

References

https://ptzoptics.com/firmware-changelog/ https://vulncheck.com/advisories/ptzoptics-insufficient-auth

Known Exploited Vulnerability Information

Source	Added Date
CISA	2024-11-04 00:00:00 UTC

Recent Mentions

PTZOptics and Other Pan-Tilt-Zoom Cameras

Source: All CISA Advisories • Published: 2025-06-12 12:00:00 UTC

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.3 ATTENTION: Exploitable remotely/low attack complexity Vendor: ValueHD, PTZOptics, multiCAM Systems, SMTAV Equipment: Various pan-tilt-zoom cameras Vulnerabilities: Improper Authentication, Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection'), Use of Hard-coded Credentials 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to leak sensitive data, execute arbitrary commands, and access the admin web interface using hard-coded credentials. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS The following ValueHD, PTZOptics, multiCAM Systems, and SMTAV products are affected: PTZOptics PT12X-SDI-xx-G2: Versions 6.3.34 and prior (CVE-2025-35451) PTZOptics PT12X-NDI-xx: Versions 6.3.34 and prior (CVE-2025-35451) PTZOptics PT12X-USB-xx-G2: Versions 6.2.81 and prior (CVE-2025-35451) PTZOptics PT20X-SDI-xx-G2: Versions 6.3.20 and prior (CVE-2025-35451) PTZOptics PT20X-NDI-xx: Versions 6.3.20 and prior (CVE-2025-35451) PTZOptics PT20X-USB-xx-G2: Versions 6.2.73 and prior (CVE-2025-35451) PTZOptics PT30X-SDI-xx-G2: Versions 6.3.30 and prior (CVE-2025-35451) PTZOptics PT30X-NDI-xx: Versions 6.3.30 and prior (CVE-2025-35451) PTZOptics PT12X-ZCAM: Versions 7.2.76 and prior (CVE-2025-35451) PTZOptics PT20X-ZCAM: Versions 7.2.82 and prior (CVE-2025-35451) PTZOptics PTVL-ZCAM: Versions 7.2.79 and prior (CVE-2025-35451) PTZOptics PTEPTZ-ZCAM-G2: Versions 8.1.81 and prior (CVE-2025-35451) PTZOptics PTEPTZ-NDI-ZCAM-G2: Versions 8.1.81 and prior (CVE-2025-35451) PTZOptics PT12X-SDI-xx-G2: All versions (CVE-2025-35452) PTZOptics PT12X-NDI-xx: All versions (CVE-2025-35452) PTZOptics PT12X-USB-xx-G2: All versions (CVE-2025-35452) PTZOptics PT20X-SDI-xx-G2: All versions (CVE-2025-35452) PTZOpticsPT20X-NDI-xx: All versions (CVE-2025-35452) PTZOptics PT20X-USB-xx-G2: All versions (CVE-2025-35452) PTZOptics PT30X-SDI-xx-G2: All versions (CVE-2025-35452) PTZOptics PT30X-NDI-xx:...

Timeline

CVE ID Reserved

September 17, 2024
CVE Published to Public

September 17, 2024
Added to KEVIntel

November 04, 2024