SystemK NVR 504/508/516 versions 2.3.5SK.30084998 and prior are vulnerable to a command injection vulnerability in the dynamic domain name system (DDNS) settings that could allow an attacker to execute arbitrary commands with root privileges.
References
Link | Resource |
---|---|
https://www.cisa.gov/news-events/ics-advisories/icsa-24-025-02 | Third Party Advisory US Government Resource |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: icscert
Published: 2024-01-25T18:21:39.427Z
Updated: 2024-01-25T18:21:39.427Z
Reserved: 2024-01-10T16:26:09.402Z
Link: CVE-2023-7227
JSON object: View
NVD Information
Status : Analyzed
Published: 2024-01-25T19:15:08.477
Modified: 2024-01-31T18:46:00.220
Link: CVE-2023-7227
JSON object: View
Redhat Information
No data.
CWE