CVE-2017-2111

Name: CVE-2017-2111
Creator: NVD / NIST
Published: 2017-04-28T16:59:01.043+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 1.20%

Last modified Jun 17, 2026

CVE-2017-2111 is a vulnerability of currently unknown severity. HTTP header injection vulnerability in TS-WPTCAM firmware version 1.18 and earlier, TS-WPTCAM2 firmware version 1.00, TS-WLCE firmware version 1.18 and earlier, TS-WLC2 firmware version 1.18 and earlier, TS-WRLC firmware version 1.17 and earlier, TS-PTCAM firmware version 1.18 and earlier, TS-PTCAM/POE firmware version 1.18 and earlier may allow a remote attackers to display false information.. EPSS estimates a 1.20% chance of exploitation in the next 30 days.

Description

HTTP header injection vulnerability in TS-WPTCAM firmware version 1.18 and earlier, TS-WPTCAM2 firmware version 1.00, TS-WLCE firmware version 1.18 and earlier, TS-WLC2 firmware version 1.18 and earlier, TS-WRLC firmware version 1.17 and earlier, TS-PTCAM firmware version 1.18 and earlier, TS-PTCAM/POE firmware version 1.18 and earlier may allow a remote attackers to display false information.

Metrics

EPSS Probability

1.20%

64.1th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-93

Affected Software

Vendor	Product	Versions
Iodata	Ts-Ptcam\/Poe Firmware	<= 1.18
Iodata	Ts-Ptcam Firmware	<= 1.18
Iodata	Ts-Wrlc Firmware	<= 1.17
Iodata	Ts-Wlc2 Firmware	<= 1.18
Iodata	Ts-Wlce Firmware	<= 1.18
Iodata	Ts-Wptcam2 Firmware	1.00
Iodata	Ts-Wptcam Firmware	<= 1.18

References

http://jvn.jp/en/jp/JVN46830433/index.htmlThird Party Advisory, VDB Entry
http://www.iodata.jp/support/information/2017/camera201702/Vendor Advisory
http://www.securityfocus.com/bid/96620Third Party Advisory, VDB Entry
http://jvn.jp/en/jp/JVN46830433/index.htmlThird Party Advisory, VDB Entry
http://www.iodata.jp/support/information/2017/camera201702/Vendor Advisory
http://www.securityfocus.com/bid/96620Third Party Advisory, VDB Entry

Timeline

Published: Apr 28, 2017
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2017-2111?

How severe is CVE-2017-2111?

Severity scoring for CVE-2017-2111 is pending analysis. The EPSS model estimates a 1.20% probability of exploitation in the next 30 days.

How do I fix CVE-2017-2111?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2017-2111?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST