CVE-2024-41883 Information

Description

Team ENVY a Security Research TEAM has found a flaw that allows for a remote code execution on the

NVR

. An attacker enters a special value for a specific URL parameter resulting in a NULL pointer reference and a reboot of the NVR. The manufacturer has released patch firmware for the flaw please refer to the manufacturer’s report for details and workarounds.

Reference

https://www.hanwhavision.com/wp-content/uploads/2024/12/NVR-Vulnerability-Report-CVE-2024-4188241887.pdf