Merit Lilin Ent. Co., Ltd. AH55B04 & AH55B08 DVR - Hard-coded Credentials
CVE-2022-47618

9.8CRITICAL

Key Information:

Vendor: Merit Lilin Ent. Co., Ltd.
Status: Ah55b04 Dvr Firmware; Ah55b08 Dvr Firmware
Vendor: CVE Published:; 3 January 2023

🔔 Create Merit Lilin Ent. Co., Ltd. Vulnerability Alert

What is CVE-2022-47618?

The Merit LILIN AH55B04 and AH55B08 DVRs have been identified with a significant security flaw due to hard-coded administrator credentials. This vulnerability enables an unauthenticated remote attacker to gain unauthorized access to the administrator page. Once inside, the attacker can manipulate system settings or disrupt service delivery, posing a severe risk to users relying on these surveillance systems. Ensuring firmware updates or changing default credentials is essential for safeguarding these devices.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

AH55B04 DVR firmware <= unspecified

AH55B08 DVR firmware <= unspecified

References

https://www.twcert.org.tw/tw/cp-132-6825-6691e-1.html

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jan 3, 2023
Vulnerability Reserved
Dec 20, 2022

JSON