CVE-2022-35733

🗓️ 23 Aug 2022 01:35:12Reported by jpcertType

cve🔗 web.nvd.nist.gov📰️ 5 Media mentions👁 72 Views

CVE-2022-35733 Missing authentication for critical function vulnerabilit

Reporter	Title	Published	Views	Family All 12
ATTACKERKB	CVE-2022-35733	23 Aug 202202:15	–	attackerkb
BDU FSTEC	The vulnerability of the microprogrammed software of the digital video recorders UNIMO models UDR-JA1004, JA1008, and JA1016 lies in the absence of authentication for a critical function, allowing attackers to execute arbitrary OS commands.	24 Aug 202200:00	–	bdu_fstec
Circl	CVE-2022-35733	23 Aug 202207:21	–	circl
CNNVD	UNIMO Technology Digital Video Recorder 访问控制错误漏洞	22 Aug 202200:00	–	cnnvd
Cvelist	CVE-2022-35733	23 Aug 202201:35	–	cvelist
EUVD	EUVD-2022-38607	3 Oct 202520:07	–	euvd
Japan Vulnerability Notes	UNIMO Technology digital video recorders vulnerable to missing authentication for critical functions	23 Aug 202205:31	–	jvn
NVD	CVE-2022-35733	23 Aug 202202:15	–	nvd
Prion	Authentication flaw	23 Aug 202202:15	–	prion
Positive Technologies	PT-2022-4366	22 Aug 202200:00	–	ptsecurity

NVD

Node

unimo udr-ja1004_firmwareRange≤1.0.20.13

AND

unimo udr-ja1004Match-

Node

unimo udr-ja1008_firmwareRange≤1.0.20.13

AND

unimo udr-ja1008Match-

Node

unimo udr-ja1016_firmwareRange≤2.0.20.13

AND

unimo udr-ja1016Match-

[
  {
    "product": "UNIMO Technology digital video recorders UDR-JA1004/JA1008/JA1016 and UDR-JA1016",
    "vendor": "UNIMO Technology Co., Ltd",
    "versions": [
      {
        "status": "affected",
        "version": "UDR-JA1004/JA1008/JA1016 firmware versions v1.0.20.13 and earlier, and UDR-JA1016 firmware versions v2.0.20.13 and earlier"
      }
    ]
  }
]