go to Content

TWCERT/CC Taiwan Computer Emergency Response Team/Coordination Center


視博網訊 SpotCam FHD 2 - Use of Hard-coded Cryptographic Key - 2

TVN ID TVN-202308006
CVE ID CVE-2023-38026
CVSS 9.8 (Critical)
Affected Products SpotCam FHD 2: 1.0036
Description SpotCam Co., Ltd. SpotCam FHD 2 has a vulnerability of using hard-coded uBoot credentials. An remote attacker can exploit this vulnerability to access the system to perform arbitrary system operations or disrupt service.
Solution update version to 1.0039 or later
Credit Lee Pu、Weber Tasi、KaiChing Wang(CHT Security)
Public Date 2023-09-19