CVE-2016-8731

Published: Jun 21, 2017Modified: May 13, 2026

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

Hard-coded FTP credentials (r:r) are included in the Foscam C1 running firmware 1.9.1.12. Knowledge of these credentials would allow remote access to any cameras found on the internet that do not have port 50021 blocked by an intermediate device.

Affected (1)

Products: Foscam: C1 Webcam Firmware

Foscam

1 product

C1 Webcam Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Foscam C1 Webcam Firmware	Version 1.9.1.12

Running on/with	Platform Versions
Foscam C1 Webcam	All versions

Related CWEs

CWE-798

Use of Hard-coded Credentials

The product contains hard-coded credentials, such as a password or cryptographic key.

References (4)

http://www.securityfocus.com/bid/99193

Source: talos-cna@cisco.com

Broken LinkThird Party AdvisoryVDB Entry

https://www.talosintelligence.com/vulnerability_reports/TALOS-2016-0245

Source: talos-cna@cisco.com

Third Party Advisory

http://www.securityfocus.com/bid/99193

Source: af854a3a-2127-422b-91ae-364da2661108

Broken LinkThird Party AdvisoryVDB Entry

https://www.talosintelligence.com/vulnerability_reports/TALOS-2016-0245

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.