Furbo dog camera has insufficient filtering for special parameter of device log management function. An unauthenticated remote attacker in the Bluetooth network with normal user privileges can exploit this vulnerability to perform command injection attack to execute arbitrary system commands or disrupt service.
History

Wed, 08 Jan 2025 20:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Mon, 14 Oct 2024 04:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-77

Mon, 14 Oct 2024 03:45:00 +0000

Type Values Removed Values Added
Weaknesses CWE-78

cve-icon MITRE

Status: PUBLISHED

Assigner: twcert

Published:

Updated: 2025-01-08T20:06:26.172Z

Reserved: 2023-03-21T00:00:00

Link: CVE-2023-28704

cve-icon Vulnrichment

Updated: 2024-08-02T13:43:23.897Z

cve-icon NVD

Status : Modified

Published: 2023-06-02T11:15:10.650

Modified: 2024-11-21T07:55:50.260

Link: CVE-2023-28704

cve-icon Redhat

No data.