CVE-2021-26637 Information

Description

There is no account authentication and permission check logic in the firmware and existing apps of SiHAS’s SGW-300 ACM-300 GCM-300 so unauthorized users can remotely control the device.

Reference

https://www.krcert.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=66782