Vulnerabilities > Castel > Nextgen DVR Firmware > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-06-04 | CVE-2020-11682 | Cross-Site Request Forgery (CSRF) vulnerability in Castel Nextgen DVR Firmware 1.0.0 Castel NextGen DVR v1.0.0 is vulnerable to CSRF in all state-changing request. | 6.5 |
| 2020-06-04 | CVE-2020-11680 | Missing Authorization vulnerability in Castel Nextgen DVR Firmware 1.0.0 Castel NextGen DVR v1.0.0 is vulnerable to authorization bypass on all administrator functionality. | 6.5 |