2 matches found
CVE-2024-14007 TVT NVMS-9000 < 1.3.4 Unauthenticated Administrative Queries & Information Disclosure
Shenzhen TVT Digital Technology Co., Ltd. NVMS-9000 firmware used by many white-labeled DVR/NVR/IPC products versions prior to 1.3.4 contain an authentication bypass in the NVMS-9000 control protocol. By sending a single crafted TCP payload to an exposed NVMS-9000 control port, an unauthenticated...
CVE-2024-14007
The CVE-2024-14007 entry affects Shenzhen TVT NVMS-9000 firmware prior to 1.3.4. A flaw in the NVMS-9000 control protocol allows an unauthenticated remote attacker to bypass authentication by sending a crafted TCP payload to an exposed control port, enabling privileged administrative query comman...