CVE-2024-22772
CVSS 3.1 Score 7.5 of 10 (high)
Attack Complexity low
Availability high
Confidentiality none
Integrity none
Scope unchanged
Privileges Required none
Details
Published Jan 23, 2024
Updated: Jan 29, 2024
CWE ID 798
CWE ID 20
Summary
CVE-2024-22772 is a newly disclosed vulnerability affecting Hitron Systems DVR LGUVR-8H versions 1.02 through 4.02. This issue arises due to insufficient input validation, enabling an attacker to launch a network attack by exploiting the default admin ID/PW. Successful exploitation could result in unauthorized access or denial-of-service conditions, potentially putting user data and network security at risk. It is recommended that affected users upgrade their DVR software to a secure version as soon as possible to mitigate this threat.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share