Home

Description

SpotCam Co., Ltd. SpotCam FHD 2’s hidden Telnet function has a vulnerability of OS command injection. An remote unauthenticated attacker can exploit this vulnerability to execute command injection attack to arbitrary system commands or disrupt service.

PUBLISHED Reserved 2023-07-12 | Published 2023-08-28 | Updated 2024-10-02 | Assigner twcert




CRITICAL: 9.8CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Problem types

CWE 78 OS Command Injection

Product status

Default status
unaffected

1.0036
affected

References

www.twcert.org.tw/tw/cp-132-7332-ee011-1.html

www.twcert.org.tw/tw/cp-132-7332-ee011-1.html

cve.org (CVE-2023-38025)

nvd.nist.gov (CVE-2023-38025)

Download JSON