1. EXECUTIVE SUMMARY
- CVSS v4 4.8
- ATTENTION: Exploitable remotely/low attack complexity/public exploits available
- Vendor: Uniview
- Equipment: NVR301-04S2-P4
- Vulnerability: Cross-site Scripting
2. RISK EVALUATION
An attacker could send a user a URL that if clicked on could execute malicious JavaScript in their browser.
3. TECHNICAL DETAILS
3.1 AFFECTED PRODUCTS
The following version of Uniview NVR, a network video recorder, is affected:
- NVR301-04S2-P4: Versions prior to NVR-B3801.20.17.240507
3.2 Vulnerability Overview
3.2.1 Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) CWE-79
The affected product is vulnerable to reflected cross-site scripting attack (XSS). An attacker could send a user a URL that if clicked on could execute malicious JavaScript in their browser. This vulnerability also requires authentication before it can be exploited, so the scope and severity is limited. Also, even if JavaScript is executed, no additional benefits are obtained.
CVE-2024-3850 has been assigned to this vulnerability. A CVSS v3.1 base score of 5.4 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N).
A CVSS v4 score has also been calculated for CVE-2024-3850. A base score of 4.8 has been calculated; the CVSS vector string is (CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N).