Security Advisory

CVE-2025-12463

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-11-03 16:45:39

Last updated 2025-11-03 20:51:37

Assigner BLSOPS

State PUBLISHED

Description

An unauthenticated SQL Injection was discovered within the Geutebruck G-Cam E-Series Cameras through the `Group` parameter in the `/uapi-cgi/viewer/Param.cgi` script. This has been confirmed on the EFD-2130 camera running firmware version 1.12.0.19.

← Browse all CVEs View on cve.org ↗