CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-7227

SystemK NVR 504/508/516 versions 2.3.5SK.30084998 and prior are vulnerable to a command injection vulnerability in the dynamic domain name system (DDNS) settings that could allow an attacker to execute arbitrary commands with root privileges.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 67.1%

CVSS Severity

CVSS v3 Score 9.8

References

Products affected by CVE-2023-7227

Systemk-Corp » Nvr 504 » Version: N/A

cpe:2.3:h:systemk-corp:nvr_504:-
Systemk-Corp » Nvr 508 » Version: N/A

cpe:2.3:h:systemk-corp:nvr_508:-
Systemk-Corp » Nvr 516 » Version: N/A

cpe:2.3:h:systemk-corp:nvr_516:-
Systemk-Corp » Nvr 504 Firmware » Version: 2.3.5sk.30084998

cpe:2.3:o:systemk-corp:nvr_504_firmware:2.3.5sk.30084998
Systemk-Corp » Nvr 508 Firmware » Version: 2.3.5sk.30084998

cpe:2.3:o:systemk-corp:nvr_508_firmware:2.3.5sk.30084998
Systemk-Corp » Nvr 516 Firmware » Version: 2.3.5sk.30084998

cpe:2.3:o:systemk-corp:nvr_516_firmware:2.3.5sk.30084998

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-7227

Products

Pricing

Contact Us