CVE-2023-47674
published 2023-11-16CVE-2023-47674: Missing authentication for critical function vulnerability in First Corporation's DVRs allows a remote unauthenticated attacker to rewrite or obtain the…
PriorityP266critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
1.26%
66.0th percentile
Missing authentication for critical function vulnerability in First Corporation's DVRs allows a remote unauthenticated attacker to rewrite or obtain the configuration information of the affected device. Note that updates are provided only for Late model of CFR-4EABC, CFR-4EAB, CFR-8EAB, CFR-16EAB, MD-404AB, and MD-808AB. As for the other products, apply the workaround.
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://jvn.jp/en/vu/JVNVU99077347/https://www.c-first.co.jp/information/ddososhirase/https://www.c-first.co.jp/wp/wp-content/uploads/2023/11/tuushin.pdfhttps://jvn.jp/en/vu/JVNVU99077347/https://www.c-first.co.jp/information/ddososhirase/https://www.c-first.co.jp/wp/wp-content/uploads/2023/11/tuushin.pdf
2023-11-16
Published