CVE-2022-26516

Name of the Vulnerable Software and Affected Versions DA50N (affected versions not specified)

Description The issue is related to insufficient authentication of data in the web interface, which may allow a remote attacker to execute arbitrary code by uploading a specially crafted image. Authorized users may inadvertently install a maliciously modified package file when updating the device via the web user interface, potentially using a package file obtained from an unauthorized source or a file that was compromised between download and deployment.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.