Maride

**Name of the Vulnerable Software and Affected Versions** NZBGet version 21.1 **Description** The issue allows authenticated remote code execution due to the unarchive programs (7za and unrar) preserving executable file permissions. An attacker with Control capability can execute a file by setting the value of `SevenZipCommand` or `UnrarCmd`. This issue only affects products that are no longer supported by the maintainer. **Recommendations** For NZBGet version 21.1, consider disabling the `SevenZipCommand` and `UnrarCmd` settings to prevent exploitation until a patch is available. Restrict access to the unarchive programs (7za and unrar) to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ABUS TVIP devices (affected versions not specified) **Description** An issue was discovered on certain ABUS TVIP devices due to a path traversal in the `/opt/cgi/admin/filewrite` API endpoint. This allows an attacker to write to files and thus execute code arbitrarily with root privileges. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ABUS TVIP TVIP20050 version LM.1.6.18 ABUS TVIP TVIP10051 version LM.1.6.18 ABUS TVIP TVIP11050 version MG.1.6.03.05 ABUS TVIP TVIP20550 version LM.1.6.18 ABUS TVIP TVIP10050 version LM.1.6.18 ABUS TVIP TVIP11550 version MG.1.6.03 ABUS TVIP TVIP21050 version MG.1.6.03 ABUS TVIP TVIP51550 version MG.1.6.03 **Description** Hardcoded manufacturer credentials and an OS command injection vulnerability in the "/cgi-bin/mft/" directory allow remote attackers to execute code as root. **Recommendations** For ABUS TVIP TVIP20050 version LM.1.6.18, consider disabling access to the "/cgi-bin/mft/" directory until a patch is available. For ABUS TVIP TVIP10051 version LM.1.6.18, consider disabling access to the "/cgi-bin/mft/" directory until a patch is available. For ABUS TVIP TVIP11050 version MG.1.6.03.05, consider disabling access to the "/cgi-bin/mft/" directory until a patch is available. For ABUS TVIP TVIP20550 version LM.1.6.18, consider disabling access to the "/cgi-bin/mft/" directory until a patch is available. For ABUS TVIP TVIP10050 version LM.1.6.18, consider disabling access to the "/cgi-bin/mft/" directory until a patch is available. For ABUS TVIP TVIP11550 version MG.1.6.03, consider disabling access to the "/cgi-bin/mft/" directory until a patch is available. For ABUS TVIP TVIP21050 version MG.1.6.03, consider disabling access to the "/cgi-bin/mft/" directory until a patch is available. For ABUS TVIP TVIP51550 version MG.1.6.03, consider disabling access to the "/cgi-bin/mft/" directory until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ABUS TVIP cameras (affected versions not specified) **Description** The issue is related to incorrect access control, allowing unauthenticated remote attackers to view the "/video.mjpg" video stream. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ABUS TVIP cameras (affected versions not specified) **Description** The issue allows attackers to gain control of the program via a crafted string sent to the `sprintf()` function. This is a Buffer Overflow vulnerability in certain ABUS TVIP cameras. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ABUS TVIP cameras (affected versions not specified) **Description** An issue was discovered in certain ABUS TVIP cameras, where the CGI scripts allow remote attackers to execute code via `system()` as root. There are several injection points in various scripts. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.