Vulnerabilities

CVE-2025-12463

by Fred · 03/11/2025

An unauthenticated SQL Injection was discovered within the Geutebruck G-Cam E-Series Cameras through the `Group` parameter in the `/uapi-cgi/viewer/Param.cgi` script. This has been confirmed on the EFD-2130 camera running firmware version 1.12.0.19.

More information : https://blog.blacklanternsecurity.com/p/cve-2025-12463-98-unauthenticated

Similar

Tags: Cybersecurity Alert