CVE-2020-11950
VIVOTEK Network Cameras before XXXXX-VVTK-2.2002.xx.01x (and before XXXXX-VVTK-0XXXX_Beta2) allows an authenticated user to upload and execute a script (with resultant execution of OS commands). For example, this affects IT9388-HT devices.
CONFIRM: http://download.vivotek.com/downloadfile/support/cyber-security/vvtk-sa-2020-001-v1.pdf
CVE: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11950
published: 28. 5. 2020
