CVE-2024-7339 | TVT DVR TD-2104TS-CL up to 1.3.4.24879B190222.D00.U2(8A21S) /queryDevInfo information disclosure

A vulnerability has been found in TVT DVR TD-2104TS-CL, DVR TD-2108TS-HP, Provision-ISR DVR SH-4050A5-5L(MM) and AVISION DVR AV108T and classified as problematic. This vulnerability affects unknown code of the file /queryDevInfo. The manipulation leads to information disclosure.

This vulnerability was named CVE-2024-7339. The attack can be initiated remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

It is recommended to apply restrictive firewalling.

CVE-2024-7339 | TVT DVR TD-2104TS-CL up to 1.3.4.24879B190222.D00.U2(8A21S) /queryDevInfo information disclosure

Related Posts

CVE-2023-46182 | IBM Sterling Secure Proxy 6.0.3/6.1.0 Web UI cross site scripting (XFDB-269692)

CVE-2024-5229 | Primary Addon for Elementor Plugin up to 1.5.5 on WordPress Pricing Table Widget cross site scripting

CVE-2024-7744 | Progress WS_FTP Server up to 8.8.7 Web Transfer Module path traversal

CVE-2024-22135 | Order Export & Order Import for WooCommerce Plugin upload_import_file unrestricted upload