OS Command Injection Vulnerability in AVTECH Security Camera
CVE-2026-56808

8.6HIGH

Key Information:

Vendor: Avtech Security Corporation
Status: Dgm3103sct
Vendor: CVE Published:; 30 June 2026

🔔 Create Avtech Security Corporation Vulnerability Alert

What is CVE-2026-56808?

The AVTECH DGM3103SCT contains a vulnerability that allows unauthorized users to execute arbitrary commands on the system through OS command injection. This issue arises when users log into the web management console, potentially leading to unauthorized access and control over the device's functions. It is crucial for users to secure their devices and apply any available patches to mitigate this vulnerability and protect against potential exploitation.

Affected Version(s)

DGM3103SCT firmware version 3.2.5.4 and prior

References

https://www.avtech.com.tw/global/en/IP%20Camera?search=DG...

https://jvn.jp/en/jp/JVN28979424/

CVSS V4

Score:

8.6

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

CVSS V3.0

Score:

7.2

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 30, 2026
Vulnerability Reserved
Jun 23, 2026

CVE-2026-56808 Data

JSON