ET WEB_SPECIFIC_APPS AVTECH IP Camera LED Brightness Parameter Command Injection Attempt (CVE-2024-7029)

SID: 2055585Rev: 1146 views

Sourceet/open

CreatedAugust 28, 2024

UpdatedAugust 28, 2024

Classificationtrojan-activity

alert http any any -> $HOME_NET any (msg:"ET WEB_SPECIFIC_APPS AVTECH IP Camera LED Brightness Parameter Command Injection Attempt (CVE-2024-7029)"; flow:established,to_server; http.method; content:"POST"; http.uri; bsize:31; content:"/cgi-bin/supervisor/Factory.cgi"; http.request_body; content:"action=white_led&brightness|3d 24 28|"; fast_pattern; startswith; reference:url,www.akamai.com/blog/security-research/2024/aug/2024-corona-mirai-botnet-infects-zero-day-sirt; reference:cve,2024-7029; classtype:trojan-activity; sid:2055585; rev:1; metadata:affected_product IP_Camera, attack_target Networking_Equipment, tls_state plaintext, created_at 2024_08_28, cve CVE_2024_7029, deployment Perimeter, deployment Internal, confidence High, signature_severity Major, updated_at 2024_08_28; target:dest_ip;)

References

url	www.akamai.com/blog/security-research/2024/aug/2024-corona-mirai-botnet-infects-zero-day-sirt
cve	2024-7029

Metadata

affected productIP_Camera

attack targetNetworking_Equipment

tls stateplaintext

created at2024_08_28

cveCVE-2024-7029

deploymentInternal

confidenceHigh

signature severityMajor

updated at2024_08_28

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!