CVE-2022-47618

🗓️ 03 Jan 2023 00:00:00Reported by twcertType

Merit LILIN AH55B04 & AH55B08 DVR firm has hard-coded administrator credentials allowing unauthenticated remote attacker to manipulate system

Reporter	Title	Published	Views	Family All 7
CNNVD	Merit LILIN AH55B04 DVR和AH55B08 DVR 信任管理问题漏洞	3 Jan 202300:00	–	cnnvd
Cvelist	CVE-2022-47618 Merit Lilin Ent. Co., Ltd. AH55B04 & AH55B08 DVR - Hard-coded Credentials	3 Jan 202300:00	–	cvelist
EUVD	EUVD-2022-50378	3 Oct 202520:07	–	euvd
NVD	CVE-2022-47618	3 Jan 202303:15	–	nvd
Prion	Hardcoded credentials	3 Jan 202303:15	–	prion
Positive Technologies	PT-2023-15439 · Meritlilin · Merit Lilin Ah55B08 +1	3 Jan 202300:00	–	ptsecurity
Vulnrichment	CVE-2022-47618 Merit Lilin Ent. Co., Ltd. AH55B04 & AH55B08 DVR - Hard-coded Credentials	3 Jan 202300:00	–	vulnrichment

NVD

Node

meritlilin ah55b08_firmwareMatch-

AND

meritlilin ah55b08Match-

Node

meritlilin ah55b04_firmwareMatch-

AND

meritlilin ah55b04Match-

[
  {
    "vendor": "Merit Lilin Ent. Co., Ltd.",
    "product": "AH55B04 DVR firmware",
    "versions": [
      {
        "version": "unspecified",
        "lessThanOrEqual": "SVN#7570",
        "status": "affected",
        "versionType": "custom"
      }
    ]
  },
  {
    "vendor": "Merit Lilin Ent. Co., Ltd.",
    "product": "AH55B08 DVR firmware",
    "versions": [
      {
        "version": "unspecified",
        "lessThanOrEqual": "SVN#7570",
        "status": "affected",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
twcert	www.twcert.org.tw/tw/cp-132-6825-6691e-1.html

21 Nov 2024 07:32Current

9.6High risk

Vulners AI Score9.6

CVSS 3.19.8

EPSS0.02078

SSVC

CWE-798