CVE-2024-22514
Description
An issue discovered in iSpyConnect.com Agent DVR 5.1.6.0 allows attackers to run arbitrary files by restoring a crafted backup file.
NVD
Severity: HIGH
CVE ID: CVE-2024-22514
CVSS Score: 8.8
CVSS Metrics: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Proof Of Concept
Orange-418
Refrence: GitHub
Content on GitHub
Orange-418 | watchers:4
AgentDVR-5.1.6.0-File-Upload-and-Remote-Code-Execution
CVE-2024-22515 arbitrary file upload and CVE-2024-22514 remote code execution for AgentDVR 5.1.6.0 (Authenticated)
Refrence: GitHub