Unrated severityNVD Advisory· Published Aug 29, 2007· Updated Apr 23, 2026

CVE-2007-4583

Description

Multiple absolute path traversal vulnerabilities in the nvUtility.Utility.1 ActiveX control in nvUtility.dll 1.0.14.0 in ACTi Network Video Recorder (NVR) SP2 2.0 allow remote attackers to (1) create or overwrite arbitrary files via a full pathname in the first argument to the SaveXMLFile method or (2) delete arbitrary files via a full pathname in the argument to the DeleteXMLFile method.

Affected products

Acti/Network Video Recorder
cpe:2.3:a:acti:network_video_recorder:sp2_2.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

osvdb.org/38386nvd
osvdb.org/38387nvd
secunia.com/advisories/26622nvd
www.securityfocus.com/bid/25465nvd
www.vupen.com/english/advisories/2007/2993nvd
exchange.xforce.ibmcloud.com/vulnerabilities/36303nvd
exchange.xforce.ibmcloud.com/vulnerabilities/36304nvd
www.exploit-db.com/exploits/4323nvd
www.exploit-db.com/exploits/4324nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.011
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000