Certain models of Network Video Recorders (NVR) developed by Digiever are susceptible to an OS Command Injection vulnerability. This flaw allows unauthenticated remote adversaries to inject and execute arbitrary operating system commands on the affected devices, potentially compromising system integrity and data confidentiality. It is crucial for users of these NVRs to implement security measures to mitigate the risks associated with this vulnerability. For more details on this issue, refer to third-party advisories.
https://securityvulnerability.io/vulner ... 2025-10265