Dvr firmware

This hub aggregates every CVE we track for Dvr firmware, a product in the ics ot iot space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 7 most recently published vulnerabilities affecting Dvr firmware.

• CVE-2023-28811There is a buffer overflow in the password recovery feature of Hikvision NVR/DVR models. If exploited, an attacker on the same local area network (LAN) could cause the device to malfunction by send...7.4Nov 23, 2023
• CVE-2021-44954In QVIS NVR DVR before 2021-12-13, an attacker can escalate privileges from a qvisdvr user to the root user by abusing a Sudo misconfiguration.7.8Jul 17, 2022
• CVE-2021-41419QVIS NVR DVR before 2021-12-13 is vulnerable to Remote Code Execution via Java deserialization.9.8Jul 17, 2022
• CVE-2020-10514iCatch DVR - Command Injection8.8Apr 15, 2020
• CVE-2020-10513iCatch DVR - Broken Access Control8.8Apr 15, 2020
• CVE-2013-6117Dahua DVR 2.608.0000.0 and 2.608.GV00.0 allows remote attackers to bypass authentication and obtain sensitive information including user credentials, change user passwords, clear log files, and per...7.5Jul 11, 2014
• CVE-2013-6023Directory traversal vulnerability in the TVT TD-2308SS-B DVR with firmware 3.2.0.P-3520A-00 and earlier allows remote attackers to read arbitrary files via .. (dot dot) in the URI.7.8Nov 2, 2013