5 matches found
CVE-2024-41886
Team ENVY, a Security Research TEAM has found a flaw that allows for a remote code execution on the NVR. An attacker could inject malformed data into url input parameters to reboot the NVR. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer's report for...
CVE-2024-41886
creationtimestamp| type| source ---|---|--- 2024-12-24 05:43:01+00:00| seen| https://infosec.exchange/users/cve/statuses/113706203961821532 2024-12-24 06:16:16+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3ldzsaj3o6425 2024-12-24 07:42:36+00:00| seen|...
CVE-2024-41886 Improper Input Validation
Team ENVY, a Security Research TEAM has found a flaw that allows for a remote code execution on the NVR. An attacker could inject malformed data into url input parameters to reboot the NVR. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer's report for...
CVE-2024-41886 Improper Input Validation
Team ENVY, a Security Research TEAM has found a flaw that allows for a remote code execution on the NVR. An attacker could inject malformed data into url input parameters to reboot the NVR. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer's report for...
CVE-2024-41886
CVE-2024-41886 affects an NVR where an attacker could inject malformed data into URL input parameters to trigger remote code execution and reboot the device. The root cause is improper handling of URL input leading to RCE, with an impact on availability (reboot) and negligible confidentiality/ in...