CVE-2017-10835

Published: Aug 29, 2017Modified: May 13, 2026

8.8

Vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 5.9

Source: NVD

Description

"Dokodemo eye Smart HD" SCR02HD Firmware 1.0.3.1000 and earlier allows authenticated attackers to conduct code injection attacks via unspecified vectors.

Affected (1)

Products: Nippon Antenna: Scr02hd Firmware

Nippon Antenna

1 product

Scr02hd Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nippon Antenna Scr02hd Firmware	Up to 1.0.3.1000

Running on/with	Platform Versions
Nippon Antenna Scr02hd	All versions

Related CWEs

CWE-94

Improper Control of Generation of Code ('Code Injection')

The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

References (4)

http://www.nippon-antenna.co.jp/product/ine/pdf/scr02hd_about_security.pdf

Source: vultures@jpcert.or.jp

Vendor Advisory

https://jvn.jp/en/jp/JVN87410770/index.html

Source: vultures@jpcert.or.jp

Third Party AdvisoryVDB Entry

http://www.nippon-antenna.co.jp/product/ine/pdf/scr02hd_about_security.pdf

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://jvn.jp/en/jp/JVN87410770/index.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

Timeline

No history available yet.