Primary

Context

MOBOTIX P3 and Mx6 Cameras Remote Code Execution Vulnerability

Vulnerability

Patched

A remote code execution vulnerability has been identified in MOBOTIX P3 cameras running versions prior to MX-V4.7.2.18 and Mx6 cameras running versions prior to MX-V5.2.0.61. The vulnerability arises because the tcpdump feature fails to properly validate input, allowing authenticated users to execute arbitrary code.

Impact

Exploitation of this vulnerability could allow an authenticated attacker to execute code remotely on the affected camera.

Remediation

Users are advised to update P3 cameras to version MX-V4.7.2.18 or later, and Mx6 cameras to version MX-V5.2.0.61 or later. Additional guidance on updating these cameras is available on the MOBOTIX website.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

7.5

exploitability

4.9

remediation

7.9

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

7.5

exploitability

4.9

remediation

7.9

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

MOBOTIX P3 and Mx6 Cameras Remote Code Execution Vulnerability

Vulnerability

Impact

Remediation

Affected Products

MOBOTIX P3 S14

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating