ICS QNAP VioStor NVR NTP Server Command Injection -1 (CVE-2023-47565)

Rule ID

1234252

Severity

High

Description

An OS command injection vulnerability has been found to affect legacy QNAP VioStor NVR models running QVR Firmware 4.x. If exploited, the vulnerability could allow authenticated users to execute commands via a network.

Impact

Remote command execution

Recommendation

Update vendor's patch.

IPS Category

ICS threats

IPS Anomaly Group

N/A

IPS Rule Default Action

Deny

References

CVE-2023-47565

ICSA-23-355-02

T1190

T1059

T0819

T0853

Keywords

N/A

Date Created

2023/12/28

Last Updated

2025/09/12

This website uses cookies to ensure you get the best experience on our website.

Learn more