Lucene search
K

9 matches found

The Hacker News
The Hacker News
added 2025/12/25 8:7 a.m.7 views

CISA Flags Actively Exploited Digiever NVR Vulnerability Allowing Remote Code Execution

The U.S. Cybersecurity and Infrastructure Security Agency CISA added a security flaw impacting Digiever DS-2105 Pro network video recorders NVRs to its Known Exploited Vulnerabilities KEV catalog, citing evidence of active exploitation. The vulnerability, tracked as CVE-2023-52163 CVSS score: 8.8...

8.8CVSS8AI score0.96434EPSS
Exploits1
CISA
CISA
added 2025/12/22 12:0 p.m.13 views

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation. CVE-2023-52163link is external Digiever DS-2105 Pro Missing Authorization Vulnerability This type of vulnerability is a frequent attack vector for malicious cyber...

8.8CVSS6.9AI score0.96434EPSS
In wildExploits1References6
RedhatCVE
RedhatCVE
added 2025/02/08 4:43 a.m.7 views

CVE-2023-52163

Digiever DS-2105 Pro 3.1.0.71-11 devices allow timetzsetup.cgi Command Injection. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...

5.9CVSS7AI score0.96434EPSS
Exploits1References1
Circl
Circl
added 2025/02/03 9:15 p.m.40 views

CVE-2023-52163

creationtimestamp| type| source ---|---|--- 2025-02-03 21:15:15+00:00| seen| https://infosec.exchange/users/cve/statuses/113942024359778828 2025-02-03 21:15:27+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhchm4cfrx2j 2025-02-03 22:08:27+00:00| seen|...

8.8CVSS6.8AI score0.96434EPSS
In wildExploits1References28
OSV
OSV
added 2025/02/03 9:15 p.m.5 views

CVE-2023-52163

Digiever DS-2105 Pro 3.1.0.71-11 devices allow timetzsetup.cgi Command Injection. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...

8.8CVSS5.8AI score0.96434EPSS
Exploits1References4
NVD
NVD
added 2025/02/03 9:15 p.m.8 views

CVE-2023-52163

Digiever DS-2105 Pro 3.1.0.71-11 devices allow timetzsetup.cgi Command Injection. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...

8.8CVSS0.96434EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/02/03 12:0 a.m.14 views

CVE-2023-52163

Digiever DS-2105 Pro 3.1.0.71-11 devices allow timetzsetup.cgi Command Injection. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...

0.96434EPSS
Exploits1References2
CVE
CVE
added 2025/02/03 12:0 a.m.73 views

CVE-2023-52163

Digiever DS-2105 Pro 3.1.0.71-11 contains a command injection vulnerability in time_tzsetup.cgi. The Nuclei template attributes the issue to unsanitized input in time_tzsetup.cgi, allowing an attacker to execute arbitrary commands remotely. Reported impact is remote code execution with high sever...

8.8CVSS7.2AI score0.96434EPSS
In wildExploits1References4Affected Software1
VulnCheck KEV
VulnCheck KEV
added 2024/12/19 12:0 a.m.5 views

VulnCheck KEV: CVE-2023-52163

Digiever DS-2105 Pro contains a missing authorization vulnerability which could allow for command injection via timetzsetup.cgi...

8.8CVSS7.3AI score0.96434EPSS
Exploits1References1
Rows per page
Query Builder