VYPR

NBD7024H-P

by Xiongmaitech

CVEs (1)

  • CVE-2026-34005HigMar 29, 2026
    risk 0.57cvss 8.8epss 0.02

    In Sofia on Xiongmai DVR/NVR (AHB7008T-MH-V2 and NBD7024H-P) 4.03.R11 devices, root OS command injection can occur via shell metacharacters in the HostName value via an authenticated DVRIP protocol (TCP port 34567) request to the NetWork.NetCommon configuration handler, because…