Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
TrendMakers Sight Bulb Pro Command Injection
Vulnerability Description
Unauthenticated users on an adjacent network with the Sight Bulb Pro can run shell commands as root through a vulnerable proprietary TCP protocol available on Port 16668. This vulnerability allows an attacker to run arbitrary commands on the Sight Bulb Pro by passing a well formed JSON string.
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:H/UI:R/S:U/C:L/I:H/A:L
Vulnerability Type
在命令中使用的特殊元素转义处理不恰当(命令注入)
Vulnerability Title
Trend Makers Sight Bulb Pro 命令注入漏洞
Vulnerability Description
Trend Makers Sight Bulb Pro是美国Trend Makers公司的一款摄像头。 Trend Makers Sight Bulb Pro存在命令注入漏洞,该漏洞源于端口16668的TCP协议存在漏洞,可能导致未认证用户执行任意命令。
CVSS Information
N/A
Vulnerability Type
N/A