{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2024-8957","assignerOrgId":"83251b91-4cc7-4094-a5c7-464a1b83ea10","state":"PUBLISHED","assignerShortName":"VulnCheck","dateReserved":"2024-09-17T19:08:48.129Z","datePublished":"2024-09-17T20:08:25.588Z","dateUpdated":"2025-12-27T16:47:39.385Z"},"containers":{"cna":{"affected":[{"defaultStatus":"unaffected","product":"PT30X-SDI","vendor":"PTZOptics","versions":[{"lessThan":"6.3.40","status":"affected","version":"0","versionType":"semver"}]},{"defaultStatus":"unaffected","product":"PT30X-NDI","vendor":"PTZOptics","versions":[{"lessThan":"6.3.40","status":"affected","version":"0","versionType":"semver"}]}],"cpeApplicability":[{"nodes":[{"cpeMatch":[{"criteria":"cpe:2.3:h:ptzoptics:pt30x-sdi:*:*:*:*:*:*:*:*","versionEndExcluding":"6.3.40","versionStartIncluding":"0","vulnerable":true}],"negate":false,"operator":"OR"}],"operator":"OR"},{"nodes":[{"cpeMatch":[{"criteria":"cpe:2.3:h:ptzoptics:pt30x-ndi-xx-g2:*:*:*:*:*:*:*:*","versionEndExcluding":"6.3.40","versionStartIncluding":"0","vulnerable":true}],"negate":false,"operator":"OR"}],"operator":"OR"}],"credits":[{"lang":"en","type":"finder","value":"Konstantin Lazarev of GreyNoise"}],"descriptions":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"PTZOptics PT30X-SDI/NDI-xx before firmware 6.3.40 is vulnerable to an OS command injection issue. The camera does not sufficiently validate the ntp_addr configuration value which may lead to arbitrary command execution when ntp_client is started. When chained with CVE-2024-8956, a remote and unauthenticated attacker can execute arbitrary OS commands on affected devices.<br>"}],"value":"PTZOptics PT30X-SDI/NDI-xx before firmware 6.3.40 is vulnerable to an OS command injection issue. The camera does not sufficiently validate the ntp_addr configuration value which may lead to arbitrary command execution when ntp_client is started. When chained with CVE-2024-8956, a remote and unauthenticated attacker can execute arbitrary OS commands on affected devices."}],"impacts":[{"capecId":"CAPEC-88","descriptions":[{"lang":"en","value":"CAPEC-88 OS Command Injection"}]}],"metrics":[{"cvssV3_1":{"attackComplexity":"LOW","attackVector":"NETWORK","availabilityImpact":"HIGH","baseScore":7.2,"baseSeverity":"HIGH","confidentialityImpact":"HIGH","integrityImpact":"HIGH","privilegesRequired":"HIGH","scope":"UNCHANGED","userInteraction":"NONE","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H","version":"3.1"},"format":"CVSS","scenarios":[{"lang":"en","value":"GENERAL"}]}],"problemTypes":[{"descriptions":[{"cweId":"CWE-78","description":"CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')","lang":"en","type":"CWE"}]}],"providerMetadata":{"orgId":"83251b91-4cc7-4094-a5c7-464a1b83ea10","shortName":"VulnCheck","dateUpdated":"2025-12-27T16:47:39.385Z"},"references":[{"tags":["vendor-advisory"],"url":"https://ptzoptics.com/firmware-changelog/"},{"tags":["third-party-advisory"],"url":"https://vulncheck.com/advisories/ptzoptics-command-injection"}],"source":{"discovery":"UNKNOWN"},"tags":["x_known-exploited-vulnerability"],"title":"PTZOptics NDI and SDI Cameras Command Injection via NTP Address Configuration","x_generator":{"engine":"Vulnogram 0.2.0"}},"adp":[{"metrics":[{"other":{"type":"ssvc","content":{"id":"CVE-2024-8957","role":"CISA Coordinator","options":[{"Exploitation":"active"},{"Automatable":"no"},{"Technical Impact":"total"}],"version":"2.0.3","timestamp":"2025-09-08T18:25:10.384044Z"}}},{"other":{"type":"kev","content":{"dateAdded":"2024-11-04","reference":"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-8957"}}}],"affected":[{"cpes":["cpe:2.3:o:ptzoptics:pt30x-sdi_firmware:*:*:*:*:*:*:*:*"],"vendor":"ptzoptics","product":"pt30x-sdi_firmware","versions":[{"status":"affected","version":"0","lessThan":"6.3.40","versionType":"semver"}],"defaultStatus":"unknown"},{"cpes":["cpe:2.3:o:ptzoptics:pt30x-ndi_firmware:*:*:*:*:*:*:*:*"],"vendor":"ptzoptics","product":"pt30x-ndi_firmware","versions":[{"status":"affected","version":"0","lessThan":"6.3.40","versionType":"semver"}],"defaultStatus":"unknown"}],"references":[{"url":"https://www.labs.greynoise.io/grimoire/2024-10-31-sift-0-day-rce/","tags":["exploit","technical-description","third-party-advisory"]},{"url":"https://www.greynoise.io/blog/greynoise-intelligence-discovers-zero-day-vulnerabilities-in-live-streaming-cameras-with-the-help-of-ai"},{"url":"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-8957","tags":["government-resource"]}],"timeline":[{"time":"2024-11-04T00:00:00.000Z","lang":"en","value":"CVE-2024-8957 added to CISA KEV"}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2025-10-21T22:55:44.249Z"}}]}}