The U.S. CISA has listed a critical security flaw in Digiever DS-2105 Pro NVRs, which is actively exploited by cyber attackers. Threat actors are using this vulnerability to deploy botnets like Mirai and ShadowV2, especially on unpatched devices. #CVE-2023-52163 #Mirai #ShadowV2
Keypoints
- The vulnerability CVE-2023-52163 involves command injection in Digiever DS-2105 Pro NVRs.
- Active exploitation has been reported by Akamai and Fortinet, targeting unpatched devices.
- The flaw allows remote code execution after authentication, leading to potential device takeover.
- Devices reached end-of-life status, leaving them unpatched and vulnerable to attack.
- CISA recommends disabling the device or applying mitigations by January 12, 2025, especially for federal agencies.
Read More: https://thehackernews.com/2025/12/cisa-flags-actively-exploited-digiever.html