CVSS: 5.3EPSS: 0%CPEs: 860EXPL: 0CVE-2023-31994
https://notcve.org/view.php?id=CVE-2023-31994
Certain Hanwha products are vulnerable to Denial of Service (DoS). ck vector is: When an empty UDP packet is sent to the listening service, the service thread results in a non-functional service (DoS) via WS Discovery and Hanwha proprietary discovery services. This affects IP Camera ANE-L7012R 1.41.01 and IP Camera XNV-9082R 2.10.02. • https://hanwhavisionamerica.com/download/50042 https://www.hanwhavision.com/wp-content/uploads/2023/04/Camera-Vulnerability-Report.pdf •
CVSS: 8.8EPSS: 0%CPEs: 236EXPL: 0CVE-2023-31996
https://notcve.org/view.php?id=CVE-2023-31996
Hanwha IP Camera ANE-L7012R 1.41.01 is vulnerable to Command Injection due to improper sanitization of special characters for the NAS storage test function. • https://hanwhavisionamerica.com/download/50042 https://www.hanwhavision.com/wp-content/uploads/2023/04/Camera-Vulnerability-Report.pdf • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 5.4EPSS: 0%CPEs: 236EXPL: 0CVE-2023-31995
https://notcve.org/view.php?id=CVE-2023-31995
Hanwha IP Camera ANE-L7012R 1.41.01 is vulnerable to Cross Site Scripting (XSS). • https://hanwhavisionamerica.com/download/50042 https://www.hanwhavision.com/wp-content/uploads/2023/04/Camera-Vulnerability-Report.pdf • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •