Отправить #324393: Faraday Technology DVR GM828x, GM8181 OS Command InjectionИнформация

Название	Faraday Technology DVR GM828x, GM8181 OS Command Injection
Описание	The Faraday Technology GM828x/GM8181 DVR devices have been found to contain a command injection vulnerability within the ntp_srv parameter. This vulnerability may allow an attacker to execute arbitrary system commands on the device with the privileges of the NTP process via a network command protocol, affecting over 27,000 Internet-connected devices.
Источник	⚠️ https://netsecfish.notion.site/Command-Injection-in-Faraday-Technology-GM828x-GM8181-DVR-1bc02d17ee5540a08273da2850e809c4?pvs=4
Пользователь	netsecfish (UID 64568)
Представление	29.04.2024 14:02 (2 лет назад)
Модерация	07.05.2024 06:57 (8 days later)
Статус	принято
Запись VulDB	263304 [Faraday GM8181/GM828x до 20240429 NTP Service ntp_srv эскалация привилегий]
Баллы	16

Do you know our Splunk app?

Download it now for free!