CVE-2023-5747
CVSS 3.1 Score 8.8 of 10 (high)
Details
Published Nov 13, 2023
Updated: Nov 17, 2023
CWE ID 347
CWE ID 345
Summary
CVE-2023-5747 is a newly discovered vulnerability that allows for remote code execution during the installation of Wave on HanwhaVision camera devices. The issue lies in the Wave server application, which is susceptible to command injection. An attacker can exploit this vulnerability to run arbitrary code on the camera device. HanwhaVision has addressed this issue by releasing patched firmware. Camera users are urged to install the updated firmware to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- Hanwha Vision Co., Ltd.