CVE-2022-35733

Missing authentication for critical function vulnerability in UNIMO Technology digital video recorders UDR-JA1004/JA1008/JA1016 firmware versions v1.0.20.13 and earlier, and UDR-JA1016 firmware versions v2.0.20.13 and earlier allows a remote unauthenticated attacker to execute an arbitrary OS...

EUVD-2022-38607

Malicious code in bioql PyPI...

Multiple vulnerabilities in UNIMO Technology digital video recorders

Overview Multiple digital video recorders provided by UNIMO Technology Co., Ltd contain multiple vulnerabilities listed below. Improper Authentication CWE-287 - CVE-2022-44620 OS Command Injection CWE-78 - CVE-2022-44606 Hidden Functionality CWE-912 - CVE-2022-43464 The reporter states that attac...

UNIMO Technology UDR-JA 安全漏洞

UNIMO Technology UDR-JA is a series of digital video recorder firmware from UNIMO Technology. A security vulnerability exists in UNIMO Technology UDR-JA1604, which stems from a hidden function...

UNIMO Technology UDR-JA 操作系统命令注入漏洞

UNIMO Technology UDR-JA is a series of digital video recorder firmware from UNIMO Technology. A security vulnerability exists in UNIMO Technology UDR-JA that originates from operating system command injection...

UNIMO Technology digital video recorders vulnerable to missing authentication for critical functions

Overview Multiple digital video recorders provided by UNIMO Technology Co., Ltd do not perform authentication for some critical functions CWE-306 in the device management web interface. The reporter states that attacks exploiting this vulnerability have been observed. Yoshiki Mori, Ushimaru Hayat...

CVE-2022-35733

Missing authentication for critical function vulnerability in UNIMO Technology digital video recorders UDR-JA1004/JA1008/JA1016 firmware versions v1.0.20.13 and earlier, and UDR-JA1016 firmware versions v2.0.20.13 and earlier allows a remote unauthenticated attacker to execute an arbitrary OS...

CVE-2022-35733

Missing authentication for critical function vulnerability in UNIMO Technology digital video recorders UDR-JA1004/JA1008/JA1016 firmware versions v1.0.20.13 and earlier, and UDR-JA1016 firmware versions v2.0.20.13 and earlier allows a remote unauthenticated attacker to execute an arbitrary OS...

Authentication flaw

Missing authentication for critical function vulnerability in UNIMO Technology digital video recorders UDR-JA1004/JA1008/JA1016 firmware versions v1.0.20.13 and earlier, and UDR-JA1016 firmware versions v2.0.20.13 and earlier allows a remote unauthenticated attacker to execute an arbitrary OS...

CVE-2022-35733

Missing authentication for critical function vulnerability in UNIMO Technology digital video recorders UDR-JA1004/JA1008/JA1016 firmware versions v1.0.20.13 and earlier, and UDR-JA1016 firmware versions v2.0.20.13 and earlier allows a remote unauthenticated attacker to execute an arbitrary OS...

CVE-2022-35733

CVE-2022-35733 affects UNIMO Technology digital video recorders: UDR-JA1004/JA1008/JA1016 firmware v1.0.20.13 and earlier, and UDR-JA1016 v2.0.20.13 and earlier. A remote unauthenticated attacker can execute arbitrary OS commands via a crafted request to the device web interface. Red Hat and JVND...

UNIMO Technology Digital Video Recorder 访问控制错误漏洞

UNIMO Technology Digital Video Recorder is a player from UNIMO Technology. UNIMO Technology Digital Video Recorder suffers from an Access Control Error vulnerability that stems from a lack of authentication for critical functions. A remote attacker could use this vulnerability to execute arbitrar...