Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
SpotCam Co., Ltd. SpotCam Sense - Command Injection
Vulnerability Description
SpotCam Co., Ltd. SpotCam Sense’s hidden Telnet function has a vulnerability of OS command injection. An remote unauthenticated attacker can exploit this vulnerability to execute command injection attack to perform arbitrary system commands or disrupt service.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
OS命令中使用的特殊元素转义处理不恰当(OS命令注入)
Vulnerability Title
SpotCam Sense 命令注入漏洞
Vulnerability Description
SpotCam Sense是中国视博网讯(SpotCam)公司的一款摄像头。 SpotCam Sense v2.2044固件版本存在命令注入漏洞,该漏洞源于Telnet功能存在命令注入漏洞,攻击者利用该漏洞可以对任意系统命令执行命令注入攻击或中断服务。
CVSS Information
N/A
Vulnerability Type
N/A