AI Score
Confidence
High
EPSS
Percentile
99.5%
In Visual Tools DVR VX16 4.2.28.0, an unauthenticated attacker can achieve remote command execution via shell metacharacters in the cgi-bin/slogin/login.py User-Agent HTTP header.
visual-tools.com/
www.exploit-db.com/exploits/50098
www.swascan.com/security-advisory-visual-tools-dvr-cve-2021-42071/