QVIS NVR DVR before 2021-12-13 is vulnerable to Remote Code Execution via Java deserialization.
9.8CVSS
9.6AI Score
0.037EPSS
In QVIS NVR DVR before 2021-12-13, an attacker can escalate privileges from a qvisdvr user to the root user by abusing a Sudo misconfiguration.
7.8CVSS
7.7AI Score
0.0005EPSS