Denver SHC-150 Smart Wifi Camera contains a hardcoded telnet credential vulnerability that allows unauthenticated attackers to access a Linux shell. Attackers c…

Denver SHC-150 Smart Wifi Camera contains a critical hardcoded telnet credential vulnerability (CVE-2021-47796) that allows unauthenticated remote attackers to gain access to a Linux shell on the device. Attackers can exploit this vulnerability by connecting to port 23 using default credentials, enabling them to execute arbitrary commands on the camera's operating system. This represents a complete compromise of the IoT device, allowing full system control without any authentication requirements. The vulnerability affects the Denver SHC-150 model and has been documented with proof-of-concept exploits available publicly.