Vulnerabilities > Xiongmaitech > Mbd6304T Firmware

DATE CVE VULNERABILITY TITLE RISK
2023-03-28 CVE-2022-45460 Out-of-bounds Write vulnerability in Xiongmaitech Mbd6304T Firmware and Nbd6808T-Pl Firmware
Multiple Xiongmai NVR devices, including MBD6304T V4.02.R11.00000117.10001.131900.00000 and NBD6808T-PL V4.02.R11.C7431119.12001.130000.00000, allow an unauthenticated and remote user to exploit a stack-based buffer overflow and crash the web server, resulting in a system reboot.
network
low complexity
xiongmaitech CWE-787
critical
 9.8
9.8
2022-12-01 CVE-2022-45045 OS Command Injection vulnerability in Xiongmaitech products
Multiple Xiongmai NVR devices, including MBD6304T V4.02.R11.00000117.10001.131900.00000 and NBD6808T-PL V4.02.R11.C7431119.12001.130000.00000, allow authenticated users to execute arbitrary commands as root, as exploited in the wild starting in approximately 2019.
network
low complexity
xiongmaitech CWE-78
8.8
8.8