15 matches found
CISA Adds One Known Exploited Vulnerability to Catalog
CISA has added one new vulnerability to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation. CVE-2023-52163link is external Digiever DS-2105 Pro Missing Authorization Vulnerability This type of vulnerability is a frequent attack vector for malicious cyber...
Digiever DS-2105 Pro Missing Authorization Vulnerability
Digiever DS-2105 Pro contains a missing authorization vulnerability which could allow for command injection via timetzsetup.cgi...
CVE-2023-52164
accessdevice.cgi on Digiever DS-2105 Pro 3.1.0.71-11 devices allows arbitrary file read. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...
CVE-2023-52163
Digiever DS-2105 Pro 3.1.0.71-11 devices allow timetzsetup.cgi Command Injection. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...
CVE-2023-52163
Digiever DS-2105 Pro 3.1.0.71-11 devices allow timetzsetup.cgi Command Injection. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...
CVE-2023-52164
accessdevice.cgi on Digiever DS-2105 Pro 3.1.0.71-11 devices allows arbitrary file read. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...
CVE-2023-52163
Digiever DS-2105 Pro 3.1.0.71-11 devices allow timetzsetup.cgi Command Injection. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...
CVE-2023-52164
accessdevice.cgi on Digiever DS-2105 Pro 3.1.0.71-11 devices allows arbitrary file read. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...
CVE-2023-52163
Digiever DS-2105 Pro 3.1.0.71-11 contains a command injection vulnerability in time_tzsetup.cgi. The Nuclei template attributes the issue to unsanitized input in time_tzsetup.cgi, allowing an attacker to execute arbitrary commands remotely. Reported impact is remote code execution with high sever...
CVE-2023-52164
accessdevice.cgi on Digiever DS-2105 Pro 3.1.0.71-11 devices allows arbitrary file read. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...
CVE-2023-52164
CVE-2023-52164 affects Digiever DS-2105 Pro (3.1.0.71-11). The issue is an arbitrary file read via access_device.cgi, with impact limited to devices no longer supported by the maintainer. Affected component: access_device.cgi on the DS-2105 Pro; root cause not explicitly detailed in the provided ...
PT-2025-1556 · Digiever · Digiever Ds-2105 Pro
Name of the Vulnerable Software and Affected Versions: Digiever DS-2105 Pro version 3.1.0.71-11 Description: The issue allows for arbitrary file read through the access device.cgi file on affected devices. This problem only affects products that are no longer supported by the manufacturer...
Digiever DS-2105 Pro 安全漏洞
The Digiever DS-2105 Pro is a network video recorder from Digiever. A security vulnerability exists in Digiever DS-2105 Pro version 3.1.0.71-11. An attacker can exploit the vulnerability to read arbitrary files...
PT-2025-1555
Name of the Vulnerable Software and Affected Versions Digiever DS-2105 Pro versions 3.1.0.71-11 Digiever DS-2105 Pro affected versions not specified Description The Digiever DS-2105 Pro network video recorder NVR has a flaw related to missing authorization, allowing for command injection via the...
VulnCheck KEV: CVE-2023-52163
Digiever DS-2105 Pro contains a missing authorization vulnerability which could allow for command injection via timetzsetup.cgi...