CVE-2025-1316CRITICAL 9.8CISA KEVEPSS p99.4%

CVE-2025-1316Edimax IC-7100 IP Camera OS Command Injection Vulnerability

Edimax / IC-7100 IP Camera

Description

Edimax IC-7100 IP camera contains an OS command injection vulnerability due to improper input sanitization that allows an attacker to achieve remote code execution via specially crafted requests. The impacted product could be end-of-life (EoL) and/or end-of-service (EoS). Users should discontinue product utilization.

Scoring

CVSS 3.19.8 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS72.27% probability of exploitation · percentile 99.4% · 2026-06-17T12:03:21Z
Published2025-03-05
Last modified2025-10-30

CISA KEV entry

Added to KEV: 2025-03-19

Underlying weaknesses· 1

CWE-78

References

  1. https://www.cisa.gov/news-events/ics-advisories/icsa-25-063-08
  2. https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-1316

1

TypeTargetConfidenceTier
WeaknessImproper Neutralization of Special Elements used in an OS Command ('OS Command Injection')cwe-780%live

(incoming)1

TypeTargetConfidenceTier
KEVEntryEdimax IC-7100 IP Camera OS Command Injection Vulnerabilitykev-cve-2025-13160%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-15256
CVE
GeoVision Devices OS Command Injection Vulnerability
CVE
CVE-2026-0855
CVE
CVE-2025-34024
CVE
CVE-2025-34029
CVE
CVE-2025-44084
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.