CISA has added a missing authorization vulnerability in Digiever DS-2105 Pro Network Video Recorders (CVE-2023-52163) to its Known Exploited Vulnerabilities (KEV) catalog. Attackers are actively using this flaw to inject commands and gain unauthorized access to physical security camera systems.
Business Impact
Compromised NVRs not only expose physical surveillance feeds to attackers but also serve as an ideal persistence point within a network. These devices are often poorly monitored and can be used as jump hosts to launch internal attacks or participate in botnets like Mirai.
Why It Happened
The device fails to properly authorize certain CGI requests, allowing attackers to bypass authentication. The continued use of legacy or unmanaged IoT/OT devices in enterprise environments provides an easy entry point for threat actors.
Recommended Executive Action
Identify any Digiever NVRs on your network. If they cannot be patched immediately, they must be isolated from the internet and the core corporate network. CISA has set a remediation deadline of January 12, 2026, but the private sector should treat this as urgent.
Hashtags: #CISA #KEV #IoT #Digiever #PhysicalSecurity #Vulnerability #NVR #CyberAttack