VYPR
Unrated severityNVD Advisory· Published Oct 11, 2013· Updated Jun 16, 2026

CVE-2013-2578

CVE-2013-2578

Description

cgi-bin/admin/servetest in TP-Link IP Cameras TL-SC3130, TL-SC3130G, TL-SC3171, TL-SC3171G, and possibly other models before beta firmware LM.1.6.18P12_sign6 allows remote attackers to execute arbitrary commands via shell metacharacters in (1) the ServerName parameter and (2) other unspecified parameters.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

6
  • cpe:2.3:h:tp-link:tl-sc3130:-:*:*:*:*:*:*:*
  • cpe:2.3:h:tp-link:tl-sc3130g:-:*:*:*:*:*:*:*
  • cpe:2.3:h:tp-link:tl-sc3171:-:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:h:tp-link:tl-sc3171:-:*:*:*:*:*:*:*
    • cpe:2.3:h:tp-link:tl-sc3171g:-:*:*:*:*:*:*:*
    • (no CPE)range: < LM.1.6.18P12_sign6
  • cpe:2.3:o:tp-link:lm_firmware:*:*:*:*:*:*:*:*
    Range: <=1.6.18p12_sign5

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.