CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-45045

Multiple Xiongmai NVR devices, including MBD6304T V4.02.R11.00000117.10001.131900.00000 and NBD6808T-PL V4.02.R11.C7431119.12001.130000.00000, allow authenticated users to execute arbitrary commands as root, as exploited in the wild starting in approximately 2019. A remote and authenticated attacker, possibly using the default admin:tlJwpbo6 credentials, can connect to port 34567 and execute arbitrary operating system commands via a crafted JSON file during an upgrade request. Since at least 2021, Xiongmai has applied patches to prevent attackers from using this mechanism to execute telnetd.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 40.8%

CVSS Severity

CVSS v3 Score 8.8

References

Products affected by CVE-2022-45045

Xiongmaitech » Mbd6304t » Version: N/A

cpe:2.3:h:xiongmaitech:mbd6304t:-
Xiongmaitech » Nbd6808t-Pl » Version: N/A

cpe:2.3:h:xiongmaitech:nbd6808t-pl:-
Xiongmaitech » Nbd7004t-P » Version: N/A

cpe:2.3:h:xiongmaitech:nbd7004t-p:-
Xiongmaitech » Nbd7008t-P » Version: N/A

cpe:2.3:h:xiongmaitech:nbd7008t-p:-
Xiongmaitech » Nbd7016t-F-V2 » Version: N/A

cpe:2.3:h:xiongmaitech:nbd7016t-f-v2:-
Xiongmaitech » Nbd7024h-P » Version: N/A

cpe:2.3:h:xiongmaitech:nbd7024h-p:-
Xiongmaitech » Nbd7024t-P » Version: N/A

cpe:2.3:h:xiongmaitech:nbd7024t-p:-
Xiongmaitech » Nbd7804r-F(Ep) » Version: N/A

cpe:2.3:h:xiongmaitech:nbd7804r-f(ep):-
Xiongmaitech » Nbd7804r-F(Hdmi) » Version: N/A

cpe:2.3:h:xiongmaitech:nbd7804r-f(hdmi):-
Xiongmaitech » Nbd7804r-Fw » Version: N/A

cpe:2.3:h:xiongmaitech:nbd7804r-fw:-
Xiongmaitech » Nbd7804t-Pl » Version: N/A

cpe:2.3:h:xiongmaitech:nbd7804t-pl:-
Xiongmaitech » Nbd7808r-Pl(Ep) » Version: N/A

cpe:2.3:h:xiongmaitech:nbd7808r-pl(ep):-
Xiongmaitech » Nbd7808r-Pl(Hdmi) » Version: N/A

cpe:2.3:h:xiongmaitech:nbd7808r-pl(hdmi):-
Xiongmaitech » Nbd7808t-Pl » Version: N/A

cpe:2.3:h:xiongmaitech:nbd7808t-pl:-
Xiongmaitech » Nbd7904r-Fs » Version: N/A

cpe:2.3:h:xiongmaitech:nbd7904r-fs:-
Xiongmaitech » Nbd7904t-P » Version: N/A

cpe:2.3:h:xiongmaitech:nbd7904t-p:-
Xiongmaitech » Nbd7904t-Pl-Xpoe » Version: N/A

cpe:2.3:h:xiongmaitech:nbd7904t-pl-xpoe:-
Xiongmaitech » Nbd7904t-Pl » Version: N/A

cpe:2.3:h:xiongmaitech:nbd7904t-pl:-
Xiongmaitech » Nbd7904t-Plc-Xpoe » Version: N/A

cpe:2.3:h:xiongmaitech:nbd7904t-plc-xpoe:-
Xiongmaitech » Nbd7904t-Q » Version: N/A

cpe:2.3:h:xiongmaitech:nbd7904t-q:-
Xiongmaitech » Nbd7908t-Q » Version: N/A

cpe:2.3:h:xiongmaitech:nbd7908t-q:-
Xiongmaitech » Nbd8004r-Pl(Ep) » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8004r-pl(ep):-
Xiongmaitech » Nbd8004r-Yl(Ep) » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8004r-yl(ep):-
Xiongmaitech » Nbd8004t-Q » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8004t-q:-
Xiongmaitech » Nbd8008r-Pl(Ep) » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8008r-pl(ep):-
Xiongmaitech » Nbd8008r-Pl » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8008r-pl:-
Xiongmaitech » Nbd8008r-Yl(Ep) » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8008r-yl(ep):-
Xiongmaitech » Nbd8008ra-Gl » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8008ra-gl:-
Xiongmaitech » Nbd8008ra-Glk » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8008ra-glk:-
Xiongmaitech » Nbd8008ra-Ul(Ep) » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8008ra-ul(ep):-
Xiongmaitech » Nbd8008ra-Ula » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8008ra-ula:-
Xiongmaitech » Nbd8008ra-Ulk » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8008ra-ulk:-
Xiongmaitech » Nbd8008t-Q » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8008t-q:-
Xiongmaitech » Nbd8009s-Ula-V2 » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8009s-ula-v2:-
Xiongmaitech » Nbd8010s-Kl-V2 » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8010s-kl-v2:-
Xiongmaitech » Nbd8016r-Ul » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8016r-ul:-
Xiongmaitech » Nbd8016ra-K(Ep) » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8016ra-k(ep):-
Xiongmaitech » Nbd8016ra-Ul(Ep) » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8016ra-ul(ep):-
Xiongmaitech » Nbd8016ra-Ul » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8016ra-ul:-
Xiongmaitech » Nbd8016ra-Ula » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8016ra-ula:-
Xiongmaitech » Nbd8016ra-Ulk » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8016ra-ulk:-
Xiongmaitech » Nbd8016s-Kl-V2 » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8016s-kl-v2:-
Xiongmaitech » Nbd8016s-Ula-V2 » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8016s-ula-v2:-
Xiongmaitech » Nbd8016t-Q-V2 » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8016t-q-v2:-
Xiongmaitech » Nbd8025r-Ul » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8025r-ul:-
Xiongmaitech » Nbd8032h4-P » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8032h4-p:-
Xiongmaitech » Nbd8032h4-Q » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8032h4-q:-
Xiongmaitech » Nbd8032h4-Qe » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8032h4-qe:-
Xiongmaitech » Nbd8032h4-Ul » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8032h4-ul:-
Xiongmaitech » Nbd8032h8-P » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8032h8-p:-
Xiongmaitech » Nbd8032h8-Qe » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8032h8-qe:-
Xiongmaitech » Nbd8032ra-Ul-V2 » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8032ra-ul-v2:-
Xiongmaitech » Nbd8064h8-P » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8064h8-p:-
Xiongmaitech » Nbd80n16ra-Kl(Ep) » Version: N/A

cpe:2.3:h:xiongmaitech:nbd80n16ra-kl(ep):-
Xiongmaitech » Nbd80n16ra-Kl » Version: N/A

cpe:2.3:h:xiongmaitech:nbd80n16ra-kl:-
Xiongmaitech » Nbd80s08s-Kl(Ep) » Version: N/A

cpe:2.3:h:xiongmaitech:nbd80s08s-kl(ep):-
Xiongmaitech » Nbd80s10s-Kl » Version: N/A

cpe:2.3:h:xiongmaitech:nbd80s10s-kl:-
Xiongmaitech » Nbd80s16s-Kl(Ep) » Version: N/A

cpe:2.3:h:xiongmaitech:nbd80s16s-kl(ep):-
Xiongmaitech » Nbd80s16s-Kl » Version: N/A

cpe:2.3:h:xiongmaitech:nbd80s16s-kl:-
Xiongmaitech » Nbd80x09ra-Kl » Version: N/A

cpe:2.3:h:xiongmaitech:nbd80x09ra-kl:-
Xiongmaitech » Nbd80x09s-Kl » Version: N/A

cpe:2.3:h:xiongmaitech:nbd80x09s-kl:-
Xiongmaitech » Nbd88x09s-Kl » Version: N/A

cpe:2.3:h:xiongmaitech:nbd88x09s-kl:-
Xiongmaitech » Nbd8904r-Pl » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8904r-pl:-
Xiongmaitech » Nbd8904r-Yl » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8904r-yl:-
Xiongmaitech » Nbd8904t-Gsc-Xpoe » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8904t-gsc-xpoe:-
Xiongmaitech » Nbd8904t-Q » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8904t-q:-
Xiongmaitech » Nbd8908r-Pl » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8908r-pl:-
Xiongmaitech » Nbd8908r-Yl » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8908r-yl:-
Xiongmaitech » Nbd8908t-Pl-Xpoe » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8908t-pl-xpoe:-
Xiongmaitech » Nbd8908t-Plc-Xpoe » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8908t-plc-xpoe:-
Xiongmaitech » Nbd8916f4-Q » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8916f4-q:-
Xiongmaitech » Nbd8916f8-Q » Version: N/A

cpe:2.3:h:xiongmaitech:nbd8916f8-q:-
Xiongmaitech » Mbd6304t Firmware » Version: 4.02.r11.00000117.10001.131900.00000

cpe:2.3:o:xiongmaitech:mbd6304t_firmware:4.02.r11.00000117.10001.131900.00000
Xiongmaitech » Nbd6808t-Pl Firmware » Version: 4.02.r11.c7431119.12001.130000.00000

cpe:2.3:o:xiongmaitech:nbd6808t-pl_firmware:4.02.r11.c7431119.12001.130000.00000
Xiongmaitech » Nbd7004t-P Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd7004t-p_firmware:-
Xiongmaitech » Nbd7008t-P Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd7008t-p_firmware:-
Xiongmaitech » Nbd7016t-F-V2 Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd7016t-f-v2_firmware:-
Xiongmaitech » Nbd7024h-P Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd7024h-p_firmware:-
Xiongmaitech » Nbd7024t-P Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd7024t-p_firmware:-
Xiongmaitech » Nbd7804r-F(Ep) Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd7804r-f(ep)_firmware:-
Xiongmaitech » Nbd7804r-F(Hdmi) Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd7804r-f(hdmi)_firmware:-
Xiongmaitech » Nbd7804r-Fw Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd7804r-fw_firmware:-
Xiongmaitech » Nbd7804t-Pl Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd7804t-pl_firmware:-
Xiongmaitech » Nbd7808r-Pl(Ep) Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd7808r-pl(ep)_firmware:-
Xiongmaitech » Nbd7808r-Pl(Hdmi) Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd7808r-pl(hdmi)_firmware:-
Xiongmaitech » Nbd7808t-Pl Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd7808t-pl_firmware:-
Xiongmaitech » Nbd7904r-Fs Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd7904r-fs_firmware:-
Xiongmaitech » Nbd7904t-P Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd7904t-p_firmware:-
Xiongmaitech » Nbd7904t-Pl-Xpoe Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd7904t-pl-xpoe_firmware:-
Xiongmaitech » Nbd7904t-Pl Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd7904t-pl_firmware:-
Xiongmaitech » Nbd7904t-Plc-Xpoe Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd7904t-plc-xpoe_firmware:-
Xiongmaitech » Nbd7904t-Q Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd7904t-q_firmware:-
Xiongmaitech » Nbd7908t-Q Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd7908t-q_firmware:-
Xiongmaitech » Nbd8004r-Pl(Ep) Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8004r-pl(ep)_firmware:-
Xiongmaitech » Nbd8004r-Yl(Ep) Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8004r-yl(ep)_firmware:-
Xiongmaitech » Nbd8004t-Q Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8004t-q_firmware:-
Xiongmaitech » Nbd8008r-Pl(Ep) Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8008r-pl(ep)_firmware:-
Xiongmaitech » Nbd8008r-Pl Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8008r-pl_firmware:-
Xiongmaitech » Nbd8008r-Yl(Ep) Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8008r-yl(ep)_firmware:-
Xiongmaitech » Nbd8008ra-Gl Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8008ra-gl_firmware:-
Xiongmaitech » Nbd8008ra-Glk Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8008ra-glk_firmware:-
Xiongmaitech » Nbd8008ra-Ul(Ep) Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8008ra-ul(ep)_firmware:-
Xiongmaitech » Nbd8008ra-Ula Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8008ra-ula_firmware:-
Xiongmaitech » Nbd8008ra-Ulk Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8008ra-ulk_firmware:-
Xiongmaitech » Nbd8008t-Q Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8008t-q_firmware:-
Xiongmaitech » Nbd8009s-Ula-V2 Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8009s-ula-v2_firmware:-
Xiongmaitech » Nbd8010s-Kl-V2 Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8010s-kl-v2_firmware:-
Xiongmaitech » Nbd8016r-Ul Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8016r-ul_firmware:-
Xiongmaitech » Nbd8016ra-K(Ep) Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8016ra-k(ep)_firmware:-
Xiongmaitech » Nbd8016ra-Ul(Ep) Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8016ra-ul(ep)_firmware:-
Xiongmaitech » Nbd8016ra-Ul Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8016ra-ul_firmware:-
Xiongmaitech » Nbd8016ra-Ula Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8016ra-ula_firmware:-
Xiongmaitech » Nbd8016ra-Ulk Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8016ra-ulk_firmware:-
Xiongmaitech » Nbd8016s-Kl-V2 Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8016s-kl-v2_firmware:-
Xiongmaitech » Nbd8016s-Ula-V2 Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8016s-ula-v2_firmware:-
Xiongmaitech » Nbd8016t-Q-V2 Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8016t-q-v2_firmware:-
Xiongmaitech » Nbd8025r-Ul Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8025r-ul_firmware:-
Xiongmaitech » Nbd8032h4-P Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8032h4-p_firmware:-
Xiongmaitech » Nbd8032h4-Q Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8032h4-q_firmware:-
Xiongmaitech » Nbd8032h4-Qe Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8032h4-qe_firmware:-
Xiongmaitech » Nbd8032h4-Ul Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8032h4-ul_firmware:-
Xiongmaitech » Nbd8032h8-P Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8032h8-p_firmware:-
Xiongmaitech » Nbd8032h8-Qe Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8032h8-qe_firmware:-
Xiongmaitech » Nbd8032ra-Ul-V2 Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8032ra-ul-v2_firmware:-
Xiongmaitech » Nbd8064h8-P Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8064h8-p_firmware:-
Xiongmaitech » Nbd80n16ra-Kl(Ep) Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd80n16ra-kl(ep)_firmware:-
Xiongmaitech » Nbd80n16ra-Kl Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd80n16ra-kl_firmware:-
Xiongmaitech » Nbd80s08s-Kl(Ep) Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd80s08s-kl(ep)_firmware:-
Xiongmaitech » Nbd80s10s-Kl Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd80s10s-kl_firmware:-
Xiongmaitech » Nbd80s16s-Kl(Ep) Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd80s16s-kl(ep)_firmware:-
Xiongmaitech » Nbd80s16s-Kl Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd80s16s-kl_firmware:-
Xiongmaitech » Nbd80x09ra-Kl Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd80x09ra-kl_firmware:-
Xiongmaitech » Nbd80x09s-Kl Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd80x09s-kl_firmware:-
Xiongmaitech » Nbd88x09s-Kl Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd88x09s-kl_firmware:-
Xiongmaitech » Nbd8904r-Pl Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8904r-pl_firmware:-
Xiongmaitech » Nbd8904r-Yl Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8904r-yl_firmware:-
Xiongmaitech » Nbd8904t-Gsc-Xpoe Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8904t-gsc-xpoe_firmware:-
Xiongmaitech » Nbd8904t-Q Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8904t-q_firmware:-
Xiongmaitech » Nbd8908r-Pl Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8908r-pl_firmware:-
Xiongmaitech » Nbd8908r-Yl Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8908r-yl_firmware:-
Xiongmaitech » Nbd8908t-Pl-Xpoe Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8908t-pl-xpoe_firmware:-
Xiongmaitech » Nbd8908t-Plc-Xpoe Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8908t-plc-xpoe_firmware:-
Xiongmaitech » Nbd8916f4-Q Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8916f4-q_firmware:-
Xiongmaitech » Nbd8916f8-Q Firmware » Version: N/A

cpe:2.3:o:xiongmaitech:nbd8916f8-q_firmware:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-45045

Products

Pricing

Contact Us