CNNVD-202508-1355 Information

CNNVD ID

CNNVD-202508-1355

Related CVE

CVE-2025-8760

• CNNVD Published: 2025-08-13

Description (Chinese)

INSTAR 2K+和INSTAR 4K都是德国INSTAR公司的一款网络摄像头。 INSTAR 2K+和INSTAR 4K 3.11.1 Build 1124版本存在安全漏洞，该漏洞源于fcgi_server组件base64_decode函数对Authorization参数操作导致缓冲区溢出。

Description (English)

INSTAR 2K+ and INSTAR 4K are both webcams of the German company INSTAR. The INSTAR 2K+ and INSTAR 4K 3.11.1 Build 1124 versions have a security loophole, which arises from the operation of the fcgi server componentbase64 decode on Authorization parameters, resulting in the spilling of the buffer zone.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

INSTAR

Published

2025-08-13

Last Modified

2026-02-24

References

https://modzero.com/static/MZ-25-03_modzero_INSTAR.pdf https://vuldb.com/?ctiid.319863 https://vuldb.com/?id.319863