Timestamp Modification Vulnerability in CP-Plus Digital Video Recorder

The vulnerability exists in CP-Plus DVR due to an improper input validation within the web-based management interface of the affected products. An unauthenticated remote attacker could exploit this vulnerability by sending specially crafted HTTP requests to the vulnerable device. Successful exploitation of this vulnerability could allow the remote attacker to change system time of the targeted device.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

N/A

CP-Plus DVR 输入验证错误漏洞

CP-Plus DVR是CP-Plus公司的一款数字视频录像机。 CP-Plus DVR存在安全漏洞，该漏洞源于输入验证不正确，未经身份验证的远程攻击者可以通过向易受攻击的设备发送特制的HTTP请求更改目标设备的系统时间。

N/A

N/A