Primary

Context

TOA Network Cameras TRIFORA 3 Series OS Command Injection Vulnerability

Vulnerability

Patched

A command injection vulnerability has been identified in multiple models of the TOA Network Cameras TRIFORA 3 series. This vulnerability allows a logged-in user with monitoring privileges or higher to execute arbitrary operating system commands on the camera.

Impact

Exploitation of this vulnerability could lead to unauthorized execution of operating system commands on the affected network camera.

Remediation

Users are advised to update the camera's firmware to version 1.3.1 or later. The updated firmware can be downloaded from the TOA Products Download Site.

Added: Jan 16, 2026, 9:31 AM

Updated: Jan 16, 2026, 4:13 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

5.2

remediation

0.0

relevance

2.2

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

5.2

remediation

0.0

relevance

2.2

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

TOA Network Cameras TRIFORA 3 Series OS Command Injection Vulnerability

Vulnerability

Impact

Remediation

Affected Products

TOA N-C3100-3

TOA N-C3120

TOA N-C3120-3

TOA N-C3200-3

TOA N-C3220-3

TOA N-C3420-3

TOA N-C3420R3

TOA N-C3500

TOA N-C3500A

TOA N-C3700

TOA N-C3700A

TOA N-C3820-3

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating