CVE-2023-29862

Опубликовано: 15 мая 2023

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

An issue found in Agasio-Camera device version not specified allows a remote attacker to execute arbitrary code via the check and authLevel parameters.

Ссылки

https://github.com/Duke1410/CVE/blob/main/CVE-2023-29862
Third Party Advisory
https://woolly-espadrille-ed5.notion.site/Agasio-Camera-device-has-a-logic-flaw-vulnerability-d4514e7217c54dd7ac62582b6664aa66
Exploit
Third Party Advisory
https://github.com/Duke1410/CVE/blob/main/CVE-2023-29862
Third Party Advisory
https://woolly-espadrille-ed5.notion.site/Agasio-Camera-device-has-a-logic-flaw-vulnerability-d4514e7217c54dd7ac62582b6664aa66
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:agasio_camera_project:agasio_camera_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:agasio_camera_project:agasio_camera:-:*:*:*:*:*:*:*

EPSS

Процентиль: 83%

0.01973

Низкий

9.8 Critical

CVSS3

Дефекты

NVD-CWE-Other

CWE-94

Связанные уязвимости

GHSA-w9r9-chq3-mf43