5 matches found
CVE-2024-41887
Team ENVY, a Security Research TEAM has found a flaw that allows for a remote code execution on the NVR. An attacker can create an NVR log file in a directory one level higher on the system, which can be used to corrupt files in the directory. The manufacturer has released patch firmware for the...
CVE-2024-41887
creationtimestamp| type| source ---|---|--- 2024-12-24 05:58:02+00:00| seen| https://infosec.exchange/users/cve/statuses/113706262965997404 2024-12-24 06:16:18+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3ldzsalgp4w2i 2024-12-24 07:42:38+00:00| seen|...
CVE-2024-41887
CVE-2024-41887 affects NVR devices where a flaw lets an attacker remotely execute code by creating a log file in a parent directory, enabling file corruption. Root cause: unauthorized log handling/creation path that allows privilege-impacting actions on the system. Impact: potential remote code e...
CVE-2024-41887 Arbitrary File Overwrite
Team ENVY, a Security Research TEAM has found a flaw that allows for a remote code execution on the NVR. An attacker can create an NVR log file in a directory one level higher on the system, which can be used to corrupt files in the directory. The manufacturer has released patch firmware for the...
CVE-2024-41887 Arbitrary File Overwrite
Team ENVY, a Security Research TEAM has found a flaw that allows for a remote code execution on the NVR. An attacker can create an NVR log file in a directory one level higher on the system, which can be used to corrupt files in the directory. The manufacturer has released patch firmware for the...