Active Exploitation of Multiple Vendor Camera System Attack
Description
What is the Attack? |
There are numerous active attacks on Camera Systems. The following are the significant ones:
|
Why is this Significant? |
FortiGuard Labs has observed active exploitation of the vulnerabilities in those camera systems, which result in system compromise, arbitrary system commands execution or file disclosure. |
What is the Vendor Solution? | FortiGuard Labs is aware of patch availability only for CVE-2018-10661 and CVE-2018-10662. |
What FortiGuard Coverage is Available?
|
Fortinet customers are protected via FortiGuard IPS - refer to the Outbreak Alert for "Multiple Vendor Camera System Attack" for the full FortiGuard coverage details. |
Outbreak Alert
FortiGuard Labs observed actively targeted video surveillance systems which may be without any available patches. Some of the attack attempts were peaked to as much as 50,000 IPS devices in the month of April 2023.
Appendix
ACV-128401 Security Advisory (Axis Communication)
ACV-128401 Affected Product List (Axis Communication)
Argus.Surveillance.DVR.WEBACCOUNT.CGI.Directory.Traversal (Fortinet)
Axis.Communications.Security.Camera.UNRET.dbus.Function.Access (Fortinet)
JAWS.DVR.CCTV.Shell.Unauthenticated.Command.Execution (Fortinet)
VACRON.CCTV.Board.CGI.cmd.Parameter.Command.Execution (Fortinet)
✖