High severity8.8NVD Advisory· Published Jan 12, 2026· Updated Apr 15, 2026
CVE-2026-0854
CVE-2026-0854
Description
Certain DVR/NVR models developed by Merit LILIN has a OS Command Injection vulnerability, allowing authenticated remote attackers to inject arbitrary OS commands and execute them on the device.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.