PT-2023-25770 · Unknown · Cp-Plus Dvr

Arko Dhar

Publicado

2023-08-24

Atualizado

2026-01-05

CVE-2023-3704

CVSS v3.1

5.3

Média

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Name of the Vulnerable Software and Affected Versions CP-Plus DVR (affected versions not specified)

Description The issue exists due to improper input validation within the web-based management interface. An unauthenticated remote attacker could exploit this by sending specially crafted HTTP requests to the vulnerable device, potentially allowing them to change the system time of the targeted device.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

RCE

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-20

Identificadores relacionados

CVE-2023-3704

Produtos afetados

Cp-Plus Dvr

PT-2023-25770 · Unknown · Cp-Plus Dvr

CVE-2023-3704

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 4