CVE-2024-41883

Team ENVY, a Security Research TEAM has found a flaw that allows for a remote code execution on the 

NVR

.An attacker enters a special value for a specific URL parameter, resulting in a NULL pointer reference and a reboot of the NVR.The manufacturer has released patch firmware for the flaw, please refer to the manufacturer's report for details and workarounds.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
UNKNOWN
---
Hanwha_VisionCNA
---
---
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 67%
Common Weakness Enumeration
References
https://www.hanwhavision.com/wp-content/uploads/2024/12/NVR-Vulnerability-Report-CVE-2024-4188241887.pdf