CVE-2022-26259

Name of the Vulnerable Software and Affected Versions Xiongmai DVR devices NBD80X16S-KL Xiongmai DVR devices NBD80X09S-KL Xiongmai DVR devices NBD80X08S-KL Xiongmai DVR devices NBD80X09RA-KL Xiongmai DVR devices AHB80X04R-MH Xiongmai DVR devices AHB80X04R-MH-V2 Xiongmai DVR devices AHB80X04-R-MH-V3 Xiongmai DVR devices AHB80N16T-GS Xiongmai DVR devices AHB80N32F4-LME Xiongmai DVR devices NBD90S0VT-QW

Description A buffer overflow in Xiongmai DVR devices allows attackers to cause a Denial of Service (DoS) via a crafted RSTP request.

Recommendations For Xiongmai DVR devices NBD80X16S-KL, consider disabling the RSTP request functionality until a patch is available. For Xiongmai DVR devices NBD80X09S-KL, consider disabling the RSTP request functionality until a patch is available. For Xiongmai DVR devices NBD80X08S-KL, consider disabling the RSTP request functionality until a patch is available. For Xiongmai DVR devices NBD80X09RA-KL, consider disabling the RSTP request functionality until a patch is available. For Xiongmai DVR devices AHB80X04R-MH, consider disabling the RSTP request functionality until a patch is available. For Xiongmai DVR devices AHB80X04R-MH-V2, consider disabling the RSTP request functionality until a patch is available. For Xiongmai DVR devices AHB80X04-R-MH-V3, consider disabling the RSTP request functionality until a patch is available. For Xiongmai DVR devices AHB80N16T-GS, consider disabling the RSTP request functionality until a patch is available. For Xiongmai DVR devices AHB80N32F4-LME, consider disabling the RSTP request functionality until a patch is available. For Xiongmai DVR devices NBD90S0VT-QW, consider disabling the RSTP request functionality until a patch is available.