Описание
LSC Smart Connect LSC Indoor PTZ Camera 7.6.32 is contains a RCE vulnerability in the tuya_ipc_direct_connect function of the anyka_ipc process. The vulnerability allows arbitrary code execution through the Wi-Fi configuration process when a specially crafted QR code is presented to the camera.
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:lsc:ptz_dual_band_camera_firmware:7.6.32:*:*:*:*:*:*:*
cpe:2.3:h:lsc:ptz_dual_band_camera:-:*:*:*:*:*:*:*
EPSS
Процентиль: 53%
0.00304
Низкий
7.7 High
CVSS3
Дефекты
CWE-94
Связанные уязвимости
CVSS3: 7.7
github
11 месяцев назад
LSC Smart Connect LSC Indoor PTZ Camera 7.6.32 is contains a RCE vulnerability in the tuya_ipc_direct_connect function of the anyka_ipc process. The vulnerability allows arbitrary code execution through the Wi-Fi configuration process when a specially crafted QR code is presented to the camera.
EPSS
Процентиль: 53%
0.00304
Низкий
7.7 High
CVSS3
Дефекты
CWE-94