Lucene search
HistoryApr 02, 2024 - 11:15 a.m.
CVE-2024-29949
vulnerability
hikvision nvrs
command injection
authenticated user
administrative rights
arbitrary commands
CVSS3
7.2
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
9.0%
There is a command injection vulnerability in some Hikvision NVRs. This could allow an authenticated user with administrative rights to execute arbitrary commands.
Related
vulnrichment
vulnrichment
CVE-2024-29949
2024-04-02 11:07:41
nessus
nessus
Hikvision Video Recorders Out-of-bounds Read (CVE-2024-29949)
2024-07-22 00:00:00
cvelist
cvelist
CVE-2024-29949
2024-04-02 11:07:41
cve
cve
CVE-2024-29949
2024-04-02 11:15:51
CVSS3
7.2
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
9.0%
Related for NVD:CVE-2024-29949