Stack-Based Buffer Overflow in Annke N48PBB Network Video Recorder (NVR) Allows Remote Code Execution

Stack-Based Buffer Overflow in Annke N48PBB Network Video Recorder (NVR) Allows Remote Code Execution

CVE-2021-32941 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Annke N48PBB (Network Video Recorder) products of version 3.4.106 build 200422 and prior are vulnerable to a stack-based buffer overflow, which allows an unauthorized remote attacker to execute arbitrary code with the same privileges as the server user (root).

Learn more about our Cis Benchmark Audit For Server Software.