CVE Tools

CVE-2016-15047

AVTECH CloudSetup.cgi Authenticated Command Injection

Published: Oct 9, 2025Updated: Oct 14, 2025 Sources: CVE List NVD BDUCWE-78

Patch Available

Description

AVTECH devices that include the CloudSetup.cgi management endpoint are vulnerable to authenticated OS command injection. The `exefile` parameter in CloudSetup.cgi is passed to the underlying system command execution without proper validation or whitelisting. An authenticated attacker who can invoke this endpoint can supply crafted input to execute arbitrary system commands as root. Successful exploitation grants full control of the device, and - depending on deployment and whether the device stores credentials or has network reachability to internal systems - may enable credential theft, lateral movement, or data exfiltration. The archived SEARCH-LAB disclosure implies that this vulnerability was remediated in early 2017, but AVTECH has not defined an affected version range.

CVSS Vector Breakdown

Exploitability

AV:NAccess Vector

Network

AC:LAccess Complexity

Low

Impact

C:HConfidentiality

H

I:HIntegrity

H

A:HAvailability

H

Open in CVSS calculator →

Weaknesses

Affected Products

IP Camera, NVR, and DVR Devices AVTECH SECURITY Corporation ICS / OT / IoT

DVR AVTECH SECURITY Corporation ICS / OT / IoT

IP camera AVTECH SECURITY Corporation ICS / OT / IoT

NVR AVTECH SECURITY Corporation ICS / OT / IoT

avtech security corporationcommercialICS / OT / IoTaka avtech security

Attack Graph

Products CVE Techniques Tactics

Click technique nodes to view MITRE ATT&CK details. Scroll to zoom, drag to pan.

Exploitability

2 exploit sources identified

Exploit details including PoC links, Metasploit modules, and scanner templates are available after registration.

View exploit details

Official Patch Available

MITRE ATT&CK

1 technique

Execution

View detailed technique mapping

References

https://web.archive.org/web/20240810225729/https://www.search-lab.hu/advisories/126-AVTech-devices-multiple-vulnerabilities

web.archive.org

https://web.archive.org/web/20170420145806/http://www.search-lab.hu/media/vulnerability_matrix.txt

web.archive.org

https://www.exploit-db.com/exploits/40500

and 5 more references View all →

Timeline

Published

Oct 9, 2025

Last Updated

Oct 14, 2025

News mentions

1

⚡ Weekly Recap: Instagram Account Hacks, Android Zero-Day, GitHub Worm and More
en·The Hacker News· Summary only·Jun 8, 2026

Unlock Complete Vulnerability Intelligence

Get the full picture for CVE-2016-15047 and every CVE in our database. Create a free account — no credit card required.

Create Free Account

Plain-language analysis

Impact assessment and exploitation scenario in plain English

Attack graph visualization

Interactive attack path and kill chain mapping

Exploit details & PoC links

ExploitDB, Metasploit, GitHub PoCs with direct links

Nuclei scanner templates

Ready-to-use vulnerability scanner templates

Full remediation guide

Patch instructions, workarounds, and compliance impact

Interactive AI chat

Ask questions about this vulnerability in natural language

Related vulnerabilities

Semantically similar CVEs and attack patterns

REST API & MCP access

Integrate vulnerability data into your workflows