SpotCam Sense's Hidden Telnet Function OS Command Injection Vulnerability

SpotCam Sense's Hidden Telnet Function OS Command Injection Vulnerability

CVE-2023-38027 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

SpotCam Co., Ltd. SpotCam Sense’s hidden Telnet function has a vulnerability of OS command injection. An remote unauthenticated attacker can exploit this vulnerability to execute command injection attack to perform arbitrary system commands or disrupt service.

Learn more about our Web Application Penetration Testing UK.