Abhishekherle

**Name of the Vulnerable Software and Affected Versions** thingsSDK WiFi Scanner version 1.0.1 **Description** The issue allows code injection because the wifiscanner.js component can be used with options to overwrite the default executable/binary path and its arguments, enabling an attacker to execute arbitrary code. **Recommendations** For version 1.0.1, consider restricting the use of the wifiscanner.js component until a patch is available to prevent arbitrary code execution.