CVE-2023-7227
published 2024-01-25CVE-2023-7227: SystemK NVR 504/508/516 versions 2.3.5SK.30084998 and prior are vulnerable to a command injection vulnerability in the dynamic domain name system (DDNS)…
PriorityP268critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
1.28%
66.4th percentile
SystemK NVR 504/508/516 versions 2.3.5SK.30084998 and prior are vulnerable to a command injection vulnerability in the dynamic domain name system (DDNS) settings that could allow an attacker to execute arbitrary commands with root privileges.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| systemk-corp | nvr_504_firmware | — | — |
| systemk-corp | nvr_508_firmware | — | — |
| systemk-corp | nvr_516_firmware | — | — |
| systemk | nvr_504 | — | — |
| systemk | nvr_508 | — | — |
| systemk | nvr_516 | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Command injection vulnerability is located in the DDNS (Dynamic Domain Name System) settings of the SystemK NVR web interface — focus network/web traffic monitoring and input validation on DDNS configuration endpoints ↗
- →A public Proof of Concept (PoC) exists for this vulnerability, authored by Keniver Wang — monitor threat intel feeds and public repositories for PoC payloads targeting SystemK NVR DDNS settings ↗
- ·SystemK has not engaged with CISA to produce a patch — no vendor-supplied fix is available; network isolation is the primary recommended mitigation ↗
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
CISA ICS
SystemK NVR 504/508/516
cisa_ics·2024-01-25·CVSS 9.8
[CRITICAL] SystemK NVR 504/508/516
ICS Advisory
##
SystemK NVR 504/508/516
Release DateJanuary 25, 2024
Alert CodeICSA-24-025-02
View CSAF
## 1. EXECUTIVE SUMMARY
- CVSS v3 9.8
- ATTENTION: Exploitable remotely/low attack complexity/public exploits are available
- Vendor: SystemK
- Equipment: NVR 504/508/516
- Vulnerability: Command Injection
## 2. RISK EVALUATION
Successful exploitation of this vulnerability could allow an attacker to execute commands with root privileges.
## 3. TECHNICAL DETAILS
## 3.1 AFFECTED PRODUCTS
The following versions of SystemK NVR, a network video recorder, are affected:
- NVR 504: 2.3.5SK.30084998
- NVR 508: 2.3.5SK.30084998
- NVR 516: 2.3.5SK.30084998
## 3.2 Vulnerability Overview
3.2.1 IMPROPER NEUTRALIZATION OF SPECIAL ELEMENTS USED IN A COMMAND ('CO
GHSA
GHSA-6485-hpmh-6q3r: SystemK NVR 504/508/516 versions 2
ghsa_unreviewed·2024-01-25
CVE-2023-7227 [CRITICAL] CWE-77 GHSA-6485-hpmh-6q3r: SystemK NVR 504/508/516 versions 2
SystemK NVR 504/508/516 versions 2.3.5SK.30084998 and prior are vulnerable to a command injection vulnerability in the dynamic domain name system (DDNS) settings that could allow an attacker to execute arbitrary commands with root privileges.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2024-01-25
Published