High severity8.1NVD Advisory· Published Apr 10, 2017· Updated May 13, 2026

CVE-2017-7648

Description

Foscam networked devices use the same hardcoded SSL private key across different customers' installations, which allows remote attackers to defeat cryptographic protection mechanisms by leveraging knowledge of this key from another installation.

Affected products

Foscam/C1
cpe:2.3:h:foscam:c1:*:*:*:*:*:*:*:*
Foscam/C1 Lite
cpe:2.3:h:foscam:c1_lite:*:*:*:*:*:*:*:*
Foscam/C2
cpe:2.3:h:foscam:c2:*:*:*:*:*:*:*:*
Foscam/Fi9800xe
cpe:2.3:h:foscam:fi9800xe:*:*:*:*:*:*:*:*
Foscam/Fi9826p
cpe:2.3:h:foscam:fi9826p:*:*:*:*:*:*:*:*
Foscam/Fi9828p
cpe:2.3:h:foscam:fi9828p:*:*:*:*:*:*:*:*
Foscam/Fi9851p
cpe:2.3:h:foscam:fi9851p:*:*:*:*:*:*:*:*
Foscam/Fi9853ep
cpe:2.3:h:foscam:fi9853ep:*:*:*:*:*:*:*:*
Foscam/Fi9901ep
cpe:2.3:h:foscam:fi9901ep:*:*:*:*:*:*:*:*
Foscam/Fi9903p
cpe:2.3:h:foscam:fi9903p:*:*:*:*:*:*:*:*
Foscam/Fi9928p
cpe:2.3:h:foscam:fi9928p:*:*:*:*:*:*:*:*
Foscam/R2
cpe:2.3:h:foscam:r2:*:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/archive/1/540388/30/0/threadednvdThird Party AdvisoryVDB Entry

News mentions

No linked articles in our index yet.

cvss	0.526
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000