AI description
CVE-2025-1316 is a command injection vulnerability found in Edimax IC-7100 IP cameras. It stems from improper neutralization of special elements within requests, allowing attackers to execute arbitrary code remotely. Exploitation involves crafting specific requests to gain control of the device. While authentication is typically required, attackers exploit the prevalence of default or weak credentials on internet-exposed cameras. Successful exploitation enables attackers to execute shell scripts, often downloading malware like Mirai. The vulnerability affects all versions of the IC-7100 and was reported to the vendor in October 2024. However, as of March 2025, no patch is available, and the vendor has been unresponsive to disclosure attempts, citing the product's end-of-life status. Multiple Mirai-based botnets are actively exploiting this vulnerability.
- Description
- Edimax IC-7100 does not properly neutralize requests. An attacker can create specially crafted requests to achieve remote code execution on the device
- Source
- ics-cert@hq.dhs.gov
- NVD status
- Analyzed
CVSS 4.0
- Type
- Secondary
- Base score
- 9.3
- Impact score
- -
- Exploitability score
- -
- Vector string
- CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
- Severity
- CRITICAL
CVSS 3.1
- Type
- Primary
- Base score
- 9.8
- Impact score
- 5.9
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- CRITICAL
Data from CISA
- Vulnerability name
- Edimax IC-7100 IP Camera OS Command Injection Vulnerability
- Exploit added on
- Mar 19, 2025
- Exploit action due
- Apr 9, 2025
- Required action
- Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- ics-cert@hq.dhs.gov
- CWE-78
- Hype score
- Not currently trending
Your security camera could be a hacker’s weapon! A critical flaw (CVE-2025-1316, CVSS 9.3) is being actively exploited to spread Mirai botnet malware turning vulnerable devices into cyberattack launchpads! . . . #hacking #kratikal #cve #vapt #iot https://t.co/X7zx83VGkD
@kratikal
27 Mar 2025
42 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
Actively exploited CVE : CVE-2025-1316
@transilienceai
23 Mar 2025
7 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
برای وبکم های مدل Edimax آسیب پذیری با کد شناسایی CVE-2025-1316 از نوع OS command execution منتشر شده است. این نوع دیوایس ها که جز اینترنت اشیا و IOT محسوب می شوند به دلیل وجود این آسیب پذیری توسط بات نت ها مانند Mirai برای حملات DDOS استفاده می شود. https://t.co/Poz3aKY03t http
@AmirHossein_sec
22 Mar 2025
22 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Actively exploited CVE : CVE-2025-1316
@transilienceai
22 Mar 2025
9 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
🚨#hack #snaphack📢📢📢 #buyingcontent #monkeyapp #telegramlinks #snapchatleak #crypto #bitcoin ฿ #easymoney #purchasesnaphacking Old Cameras, New Threats 🔥 A critical flaw (CVE-2025-1316, CVSS 9.3) in Edimax IC-7100 cameras is under active attack—turning unpatched devices‼ http
@savana_recovery
21 Mar 2025
174 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
🚨#hack #snaphack📢📢📢 #buyingcontent #monkeyapp #telegramlinks #snapchatleak #crypto #bitcoin ฿ #easymoney #purchasesnaphacking Old Cameras, New Threats 🔥 A critical flaw (CVE-2025-1316, CVSS 9.3) in Edimax IC-7100 cameras is under active attack—turning unpatched devices‼ http
@cyberwatch_incc
21 Mar 2025
99 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨#hack #snaphack📢📢📢 #buyingcontent #monkeyapp #telegramlinks #snapchatleak #crypto #bitcoin ฿ #easymoney #purchasesnaphacking Old Cameras, New Threats 🔥 A critical flaw (CVE-2025-1316, CVSS 9.3) in Edimax IC-7100 cameras is under active attack—turning unpatched devices‼ http
@Ethicalhacker21
20 Mar 2025
6 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨#hack #snaphack📢📢📢 #buyingcontent #monkeyapp #telegramlinks #snapchatleak #crypto #bitcoin ฿ #easymoney #purchasesnaphacking Old Cameras, New Threats 🔥 A critical flaw (CVE-2025-1316, CVSS 9.3) in Edimax IC-7100 cameras is under active attack—turning unpatched devices‼ http
@Ethicalhacker21
20 Mar 2025
2 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨#hack #snaphack📢📢📢 #buyingcontent #monkeyapp #telegramlinks #snapchatleak #crypto #bitcoin ฿ #easymoney #purchasesnaphacking Old Cameras, New Threats 🔥 A critical flaw (CVE-2025-1316, CVSS 9.3) in Edimax IC-7100 cameras is under active attack—turning unpatched devices‼ http
@Recoverytheate
20 Mar 2025
323 Impressions
0 Retweets
4 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨CVE Alert: Edimax IC-7100 IP Camera OS Command Injection Vulnerability Exploited In The Wild🚨 Vulnerability Details: CVE-2025-1316 (CVSS 9.8/10) Edimax IC-7100 IP Camera OS Command Injection Vulnerability Impact A successful exploit may allow a remote attacker to achieve… ht
@CyberxtronTech
20 Mar 2025
45 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨CVE Alert: Edimax IC-7100 IP Camera OS Command Injection Vulnerability Exploited In The Wild🚨 Vulnerability Details: CVE-2025-1316 (CVSS 9.8/10) Edimax IC-7100 IP Camera OS Command Injection Vulnerability Impact A successful exploit may allow a remote attacker to achieve… ht
@CyberxtronTech
20 Mar 2025
6 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
🚨#hack #snaphack📢📢📢 #buyingcontent #monkeyapp #telegramlinks #snapchatleak #crypto #bitcoin ฿ #easymoney #purchasesnaphacking Old Cameras, New Threats 🔥 A critical flaw (CVE-2025-1316, CVSS 9.3) in Edimax IC-7100 cameras is under active attack—turning unpatched devices‼ http
@T_Recoveries
19 Mar 2025
138 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🛡️ We added Edimax, SAP, and NAKIVO vulnerabilities, CVE-2025-1316, CVE-2017-12637, & CVE-2024-48248 to our Known Exploited Vulnerabilities Catalog. Visit https://t.co/myxOwap1Tf & apply mitigations to protect your org from cyberattacks. #Cybersecurity #InfoSec https://t
@CISACyber
19 Mar 2025
358 Impressions
1 Retweet
1 Like
0 Bookmarks
0 Replies
0 Quotes
An unpatched security flaw impacting the Edimax IC-7100 network camera is being exploited by threat actors to deliver Mirat botnet malware variants since at least May 2024. The vulnerability in question is CVE-2025-1316 (CVSS v4 score: 9.3). https://t.co/VVmmYPOG1C https://t.co/G
@riskigy
19 Mar 2025
25 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 Un exploit crítico en las cámaras Edimax IC-7100 (CVE-2025-1316) permite a los atacantes desplegar variantes de la botnet Mirai desde mayo de 2024. La vulnerabilidad de inyección de comandos facilita la ejecución remota de código. Se recomienda migrar a dispositivos… https://t
@pipobarraca
19 Mar 2025
65 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
An #unpatched #security flaw (CVE-2025-1316) impacting the #Edimax IC-7100 network camera is being exploited by #hackers to deliver #Mirat #botnet #malware variants since at least May 2024. #Cybersecurity #infosec #cybercrime https://t.co/wSFgNEFhcC https://t.co/K0jhfxHFzm
@twelvesec
19 Mar 2025
3 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 Old Cameras, New Threats 🔥 A critical flaw (CVE-2025-1316, CVSS 9.3) in Edimax IC-7100 cameras is under active attack—turning unpatched devices into Mirai botnet soldiers for massive DDoS strikes. Default creds (admin:1234) = easy pickings for attackers https://t.co/DrUhVDF
@achi_tech
18 Mar 2025
44 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 Threat Alert: Edimax Network Cameras Exploited by Mirai Malware 📅 Date: 2025-03-18 📆 Timeline: 📌 Attribution: Akamai SIRT and CISA indicate ongoing exploitation by multiple precarious botnets. 📝 Summary: A command injection vulnerability (CVE-2025-1316) in Edimax IoT… htt
@syedaquib77
18 Mar 2025
42 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-1316: Edimax Network Cameras Exploited to Spread Mirai Malware Explore the rise of Mirai malware exploiting IoT vulnerabilities in Edimax devices and find out how to protect yourself. https://t.co/xKPyZtBiKr
@the_yellow_fall
18 Mar 2025
485 Impressions
3 Retweets
11 Likes
1 Bookmark
1 Reply
0 Quotes
Actively exploited CVE : CVE-2025-1316
@transilienceai
17 Mar 2025
17 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
A critical flaw (CVE-2025-1316) in Edimax IC-7100 cameras allows remote code execution, exploited via default credentials since May 2024. No patch available as Edimax drops support. ⚠️#Edimax #IoTSecurity #USA link: https://t.co/sP8GglX30k https://t.co/noyTz8qlyI
@TweetThreatNews
17 Mar 2025
12 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Telecamere Edimax compromesse diffondono malware per botnet Mirai Sicurezza Informatica, akamai, attacco, botnet, CVE-2025-1316, Edimax, IoT, malware, mirai, ricerca, sicurezza, vulnerabilità https://t.co/gqy0Wd7got https://t.co/WW2MhYRUb3
@matricedigitale
17 Mar 2025
27 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
**Alert!** Critical RCE vuln (CVE-2025-1316) found in Edimax IC-7100 IP cameras by Akamai SIRT. No patches yet, devices exposed to Mirai botnets. Disconnect affected cams ASAP & monitor networks for unusual activity. Stay vigilant! Learn more: https://t.co/Izavp7y7VP
@Tudorel92659164
17 Mar 2025
27 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
🚨 Threat Alert: Edimax Camera Vulnerability Exploited by Mirai Botnet 📅 Date: 2024-05-01 📆 Timeline: Initial exploit attempts began in May 2024; public PoC available since June 2023. 📌 Attribution: Multiple Mirai-based botnets linked to exploitations of CVE-2025-1316. 📝… ht
@syedaquib77
17 Mar 2025
31 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 Unpatched Edimax Camera Flaw Exploited for Mirai Botnet Attacks 🚨 A critical security vulnerability (CVE-2025-1316) in Edimax IC-7100 cameras has been actively exploited by cybercriminals since May 2024, allowing them to inject Mirai botnet malware into exploited devices. ht
@SecurityJoes
17 Mar 2025
116 Impressions
1 Retweet
1 Like
1 Bookmark
0 Replies
0 Quotes
🚨 Old Cameras, New Threats 🔥 A critical flaw (CVE-2025-1316, CVSS 9.3) in Edimax IC-7100 cameras is under active attack—turning unpatched devices into Mirai botnet soldiers for massive DDoS strikes. Default creds (admin:1234) = easy pickings for attackers 🔗 Details:… https:
@TheHackersNews
17 Mar 2025
10745 Impressions
47 Retweets
104 Likes
15 Bookmarks
1 Reply
6 Quotes
📌 ثغرة أمنية غير مُعَلَّمة في كاميرا Edimax IC-7100 تُستغل من قبل المهاجمين لنشر برمجيات تابعة لبرمجية Mirai منذ مايو 2024. الثغرة، المعروفة برمز CVE-2025-1316، تُصنَّف كخطيرة (نقاط CVSS: 9.3)، مما يسمح بتنفيذ تعليمات برمجية عن بُعد على الأجهزة المتأثرة. #الامن_السيبراني https:
@Cybercachear
17 Mar 2025
22 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 Old Cameras, New Threats 🔥 A critical flaw (CVE-2025-1316, CVSS 9.3) in Edimax IC-7100 cameras is under active attack—turning unpatched devices into Mirai botnet soldiers for massive DDoS strikes. Default creds (admin:1234) = easy pickings for at... https://t.co/ceS6mZqPuk
@IT_news_for_all
17 Mar 2025
5 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
Actively exploited CVE : CVE-2025-1316
@transilienceai
17 Mar 2025
25 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
Actively exploited CVE : CVE-2025-1316
@transilienceai
16 Mar 2025
18 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
به تازگی آسیب پذیری برای ip camera مدل IC-7100 با کد شناسایی CVE-2025-1316 و از نوع OS Command execution منتشر شده است. این آسیب پذیری که دارای نمره 9.3 بوده و توسط هکر ها برای آلوده کردن آنها به بات نت ، اکسپلویت می شود. https://t.co/Poz3aKY03t https://t.co/Ej0bkuVwVx
@AmirHossein_sec
15 Mar 2025
20 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Actively exploited CVE : CVE-2025-1316
@transilienceai
15 Mar 2025
11 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
🚨Threat alert🚨 The Akamai SIRT has identified a new command injection vulnerability that is attempting exploitation against Edimax devices. (CVE-2025-1316) Blog includes full technical details, botnets abusing the vulnerability, IOCs and more: https://t.co/BGIXwAxLQC https:/
@akamai_research
13 Mar 2025
2194 Impressions
4 Retweets
15 Likes
6 Bookmarks
1 Reply
1 Quote
Actively exploited CVE : CVE-2025-1316
@transilienceai
11 Mar 2025
25 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
A critical command injection vulnerability (CVE-2025-1316) in the Edimax IC-7100 IP camera is being actively exploited by botnet malware, allowing remote code execution. Discovered by Akamai, the flaw has a CVSS score of 9. https://t.co/1fTanDyYhS
@securityRSS
10 Mar 2025
21 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Actively exploited CVE : CVE-2025-1316
@transilienceai
10 Mar 2025
16 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
Actively exploited CVE : CVE-2025-1316
@transilienceai
10 Mar 2025
17 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
Actively exploited CVE : CVE-2025-1316
@transilienceai
9 Mar 2025
13 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
Vulnerabilità nella telecamera Edimax IC-7100 genera zombie per botnet Sicurezza Informatica, attacco remoto, cisa, CVE-2025-1316, Edimax IC-7100, IoT, OS Command Injection, sicurezza, vulnerabilità https://t.co/Ks1qYb5HJW https://t.co/T7FX7FqEB6
@matricedigitale
8 Mar 2025
22 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
#Mirai-based #botnets #exploit CVE-2025-1316 #zero_day in #Edimax #IP_cameras https://t.co/hgelFjL9Z6 https://t.co/Hujxkyz8V5
@omvapt
8 Mar 2025
20 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Actively exploited CVE : CVE-2025-1316
@transilienceai
8 Mar 2025
11 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
Unpatched Edimax Camera Zero-Day Under Attack 🚨 Mirai botnets are exploiting CVE-2025-1316, a critical RCE flaw in Edimax IC-7100 IP cameras. No patch available—assume compromise if exposed online! https://t.co/04sxs383Wj #CyberSecurity #IoT #Hacking #Botnet https://t.co/R
@dCypherIO
8 Mar 2025
24 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
A critical flaw (CVE-2025-1316) in Edimax IC-7100 IP cameras is being exploited by botnet malware. With a CVSS score of 9.3, affected users should take devices offline or replace them. 📷🔒 #Edimax #Botnet #USA link: https://t.co/JrjDhNanFm https://t.co/WWrM4MhSIO
@TweetThreatNews
7 Mar 2025
37 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
MiraiボットネットがEdimax製IPカメラのゼロデイ(CVE-2025-1316)を悪用し、大規模攻撃を実施。DDoSやリモート制御の被害拡大。ファームウェア更新が未提供のため、管理ポートの閉鎖が推奨される。 https://t.co/SEnYMZjrlW
@01ra66it
7 Mar 2025
1227 Impressions
4 Retweets
13 Likes
8 Bookmarks
1 Reply
1 Quote
Akamai researchers confirm a critical command injection vulnerability (CVE-2025-1316) in Edimax IC-7100 IP cameras exploited by botnet malware, urging users to offline or replace affected devices and enhance security. #Security https://t.co/nvWH6oXtGe
@Strivehawk
7 Mar 2025
1 Impression
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 CISA Alert: Edimax IP Camera Vulnerability! 🚨 CVE-2025-1316 (CVSS 9.8) allows remote code execution on Edimax IC-7100 cameras. No vendor fix! Public exploits are out. Use firewalls & VPNs #Deepweb #Darkweb Breaking news from the world & Darkweb: https://t.co/ZF7G3lwjo
@godeepweb
7 Mar 2025
31 Impressions
1 Retweet
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CISA warns of a critical vulnerability (CVE-2025-1316) in Edimax IC-7100 IP cameras, with a CVSS score of 9.8. Remote code execution risk is high due to available public exploits. 🛡️ #CISA #Edimax #USA link: https://t.co/XXdmCEzLB6 https://t.co/SCD9ByDU3a
@TweetThreatNews
7 Mar 2025
37 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Actively exploited CVE : CVE-2025-1316
@transilienceai
7 Mar 2025
9 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
A serious vulnerability (CVE-2025-1316) in Edimax IC-7100 IP cameras allows command injection and remote execution, exploited by Mirai botnets. No patch available. Risks remain high! 📷⚠️ #Edimax #BotnetThreat #USA link: https://t.co/UvCPn0q23d https://t.co/qR7svPIhQe
@TweetThreatNews
7 Mar 2025
19 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
🚨 Edimax IC-7100 IP Camera 0-Day Exploited in Attacks Read more: https://t.co/xe7HuCtGDO 👉 CVE-2025-1316, allows attackers to execute remote code on the device by sending specially crafted requests, exploiting an improper neutralization of unique elements used in OS… https:/
@The_Cyber_News
7 Mar 2025
315 Impressions
0 Retweets
3 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:edimax:ic-7100_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CCC9FC13-8583-44E7-8023-7661DC41FFA7"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:edimax:ic-7100:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "2F2A4FCD-2C1A-4D42-A76C-6CF84EB3ADF1"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]