ICS ABUS Security Camera TVIP Remote Code Execution -1 (CVE-2023-26609)

Rule ID

1233306

Severity

High

Description

ABUS TVIP 20000-21150 devices allows remote attackers to execute arbitrary code via shell metacharacters in the /cgi-bin/mft/wireless_mft ap field.

Impact

Remote code execution

Recommendation

Update vendor's patch.

IPS Category

Web threats

IPS Anomaly Group

N/A

IPS Rule Default Action

Deny

References

CVE-2023-26609

CVE-2018-17558

ICSA-23-187-02

EDB-51294

T1202

T1059.004

T1068

Keywords

N/A

Date Created

2023/07/25

Last Updated

2026/05/28