CVE-2023-3705

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Aug 24, 2023
Updated: Aug 31, 2023

Summary

CVE-2023-3705 is a newly identified vulnerability affecting the CP-Plus NVR's web-based management interface. The issue stems from improper input handling at this interface, making it susceptible to unauthenticated attacks. A remote attacker can exploit this weakness by sending tailored HTTP requests to the device. If successful, the attacker may gain access to sensitive information residing on the targeted CP-Plus NVR.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share