Bydemes · Bydemes Group Airspace Cctv Web Service · CVE-2023-0506
**Name of the Vulnerable Software and Affected Versions**
ByDemes Group Airspace CCTV Web Service version 2.616.BY00.11
**Description**
The web service of ByDemes Group Airspace CCTV Web Service contains a privilege escalation issue, detected in the Camera Control Panel. This could allow a low-privileged attacker to gain administrator access.
**Recommendations**
For version 2.616.BY00.11, consider restricting access to the Camera Control Panel until a patch is available. As a temporary workaround, limit the privileges of low-privileged attackers to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.