CVE-2023-30467 (ms-n1004-uc_firmware, ms-n1004-upc_firmware, ms-n1008-uc_firmware, ms-n1008-unc_firmware, ms-n1008-unpc_firmware, ms-n1008-upc_firmware, ms-n5008-e_firmware, ms-n5008-pe_firmware, ms-n5008-uc_firmware, ms-n5008-upc_firmware, ms-n5016-e_firmware, ms-n5016-pe_firmware, ms-n7016-uh_firmware, ms-n7016-uph_firmware, ms-n7032-uh_firmware, ms-n7032-uph_firmware, ms-n7048-uph_firmware, ms-n8032-uh_firmware, ms-n8064-uh_firmware, ms-nxxxx-xxg_firmware, ms-nxxxx-xxt_firmware)

06/05/2023

This vulnerability exists in Milesight 4K/H.265 Series NVR models (MS-Nxxxx-xxG, MS-Nxxxx-xxE, MS-Nxxxx-xxT, MS-Nxxxx-xxH and MS-Nxxxx-xxC), due to improper authorization at the Milesight NVR web-based management interface. A remote attacker could exploit this vulnerability by sending a specially crafted http requests on the targeted device.

Successful exploitation of this vulnerability could allow remote attacker to perform unauthorized activities on the targeted device.Read More

Vulnerability

發佈留言取消回覆

This site uses Akismet to reduce spam. Learn how your comment data is processed.

InfoHub 2023

InfoHub

發佈留言 取消回覆

發佈留言取消回覆