CVE-2020-37175

Description

P2PWIFICAM2 for iOS 10.4.1 contains a denial of service vulnerability that allows attackers to crash the application by manipulating the Camera ID input field. Attackers can paste a 257-character buffer into the Camera ID field to trigger an application crash on iOS devices.

PUBLISHED Reserved 2026-02-10 | Published 2026-02-11 | Updated 2026-02-17 | Assigner VulnCheck

Problem types

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

Product status

Credits

Ivan Marmolejo finder

References

www.exploit-db.com/exploits/47993 (ExploitDB-47993) exploit

download.cnet.com/p2pwificam2/3000-12511_4-76835814.html (P2PWIFICAM2 for iOS Archived Software) product

www.vulncheck.com/...cam-for-ios-camera-id-denial-of-service (VulnCheck Advisory: P2PWIFICAM2 for iOS 10.4.1 - 'Camera ID' Denial of Service) third-party-advisory

cve.org (CVE-2020-37175)

nvd.nist.gov (CVE-2020-37175)

Download JSON