CVE-2023-30467 Improper Authorization Vulnerability in Milesight Network Video Recorder (NVR)

🗓️ 28 Apr 2023 10:12:11Reported by CERT-InType

Improper Authorization Vulnerability in Milesight NVR model

Reporter	Title	Published	Views	Family All 10
Circl	CVE-2023-30467	28 Apr 202314:27	–	circl
CNNVD	Milesight 4K/H.265 Series 安全漏洞	28 Apr 202300:00	–	cnnvd
CVE	CVE-2023-30467	28 Apr 202310:12	–	cve
EUVD	EUVD-2023-34882	3 Oct 202520:07	–	euvd
NVD	CVE-2023-30467	28 Apr 202311:15	–	nvd
OSV	CVE-2023-30467	28 Apr 202311:15	–	osv
Prion	Authorization	28 Apr 202311:15	–	prion
Positive Technologies	PT-2023-22707 · Milesight · Milesight 4K/H.265 Series Nvr	28 Apr 202300:00	–	ptsecurity
RedhatCVE	CVE-2023-30467	23 May 202506:05	–	redhatcve
Vulnrichment	CVE-2023-30467 Improper Authorization Vulnerability in Milesight Network Video Recorder (NVR)	28 Apr 202310:12	–	vulnrichment

[
  {
    "defaultStatus": "unaffected",
    "product": "NVR MS-Nxxxx-xxG",
    "vendor": "Milesight",
    "versions": [
      {
        "lessThan": "77.9.0.18-r2",
        "status": "affected",
        "version": "77.X",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "NVR MS-Nxxxx-xxE",
    "vendor": "Milesight",
    "versions": [
      {
        "lessThan": "75.9.0.18-r2",
        "status": "affected",
        "version": "75.X",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "NVR MS-Nxxxx-xxT",
    "vendor": "Milesight",
    "versions": [
      {
        "lessThan": "72.9.0.18-r2",
        "status": "affected",
        "version": "72.X",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "NVR MS-Nxxxx-xxH ",
    "vendor": "Milesight",
    "versions": [
      {
        "lessThan": "71.9.0.18-r2",
        "status": "affected",
        "version": "71.X",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "NVR MS-Nxxxx-xxC",
    "vendor": "Milesight",
    "versions": [
      {
        "lessThan": "73.9.0.18-r2",
        "status": "affected",
        "version": "73.X",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
cert-in	www.cert-in.org.in/s2cMainServlet

28 Apr 2023 10:12Current

9.4High risk

Vulners AI Score9.4

CVSS 3.17.5

EPSS0.01078

CWE-285