CVE-2022-35733

Published: Aug 23, 2022

Modified: Aug 3, 2024

PUBLISHED

Description

Missing authentication for critical function vulnerability in UNIMO Technology digital video recorders (UDR-JA1004/JA1008/JA1016 firmware versions v1.0.20.13 and earlier, and UDR-JA1016 firmware versions v2.0.20.13 and earlier) allows a remote unauthenticated attacker to execute an arbitrary OS command by sending a specially crafted request to the affected device web interface.

Vendor	Product	Versions
UNIMO Technology Co., Ltd	UNIMO Technology digital video recorders UDR-JA1004/JA1008/JA1016 and UDR-JA1016	affected `UDR-JA1004/JA1008/JA1016 firmware versions v1.0.20.13 and earlier, and UDR-JA1016 firmware versions v2.0.20.13 and earlier`

References

http://www.unimo.co.jp/table_notice/index.php?act=1&resid=1643590226-637355

x_refsource_MISC

https://jvn.jp/en/vu/JVNVU90821877/index.html

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2022-35733

Description

Affected Products

References