PT-2022-24406 · Unknown · Smacam Cs-Qr10+1
Samy Younsi
+1
·
Published
2022-09-08
·
Updated
2024-01-08
·
CVE-2022-38399
CVSS v3.1
6.8
Medium
| Vector | AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
SmaCam CS-QR10 all versions
SmaCam Night Vision CS-QR20 all versions
Description
A missing protection mechanism for an alternate hardware interface in the affected products allows an attacker to execute an arbitrary OS command by connecting to the product's specific serial connection.
Recommendations
For SmaCam CS-QR10 all versions: At the moment, there is no information about a newer version that contains a fix for this vulnerability.
For SmaCam Night Vision CS-QR20 all versions: At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Improper Authentication
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Smacam Cs-Qr10
Smacam Night Vision Cs-Qr20