virus logo OT Virtual Patch

PTZOptics.PT30X.post_network_other_com.Command.Injection.

description-logoDescription

This indicates an attack attempt to exploit a Command Injection Vulnerability in PTZOptics PT30X-SDI/NDI cameras. The vulnerability is due to insufficient validation of user-supplied inputs. A remote attacker can exploit this vulnerability by sending maliciously crafted requests to a vulnerable application. Successful exploitation could result in arbitrary command execution in the security context of the application.

description-logoOutbreak Alert

FortiGuard Labs has observed attack attempts aimed at PTZOptics cameras, with FortiGuard sensors detecting telemetry from as many as 4,000 devices. This surge in activity highlights the vulnerabilities present in these devices, which can be easily exploited by attackers seeking unauthorized access, potentially leading complete camera takeover, infection with bots, pivoting to other devices connected on the same network, or disruption of video feeds.

View the full Outbreak Alert Report

affected-products-logoAffected Products

System Compromise: Remote attackers can gain control of vulnerable systems.

Impact logoImpact

PTZOptics PT30X-SDI/NDI-xx prior to 6.3.40

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor. https://ptzoptics.com/firmware-changelog/

Version Updates

Date Version Status Detail
2026-03-09 35.180
Modified
 Sig Added
2025-02-11 30.952
New
ID 10007690
Created Feb 10, 2025
Updated Feb 10, 2025
CVE ID
Tags PTZOptics Cameras Attack
Default Action Unavailable
Active
Affected OS Other
Affected App Other