Incorrect access control in the administrative functionalities of BES–6024PB-I50H1 VideoPlayTool v2.0.1.0 allow attackers to execute arbitrary administrative commands via a crafted payload sent to the desired endpoints.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Videoplaytool | Besder | 2.0.1.0 (including) | 2.0.1.0 (including) |