| Titel | TBK TBK DVR-4104, TBK DVR-4216 N/A Command Injection |
|---|
| Beschreibung | The TBK DVR devices are now found to be vulnerable to a more severe command injection. Unlike CVE-2018-9995, the newly discovered vulnerability enables execution of arbitrary commands on the device's operating system, affecting over 114,000 devices on the Internet. |
|---|
| Quelle | ⚠️ https://github.com/netsecfish/tbk_dvr_command_injection |
|---|
| Benutzer | netsecfish (UID 64568) |
|---|
| Einreichung | 11.04.2024 11:49 (vor 2 Jahren) |
|---|
| Moderieren | 12.04.2024 19:20 (1 day later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 260573 [TBK DVR-4104/DVR-4216 bis 20240412 device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___ mdb/mdc erweiterte Rechte] |
|---|
| Punkte | 17 |
|---|