CVE-2023-0506

Name of the Vulnerable Software and Affected Versions ByDemes Group Airspace CCTV Web Service version 2.616.BY00.11

Description The web service of ByDemes Group Airspace CCTV Web Service contains a privilege escalation issue, detected in the Camera Control Panel. This could allow a low-privileged attacker to gain administrator access.

Recommendations For version 2.616.BY00.11, consider restricting access to the Camera Control Panel until a patch is available. As a temporary workaround, limit the privileges of low-privileged attackers to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.