Mastodawn

Offensive Sequence 14h ago

🔎 CVE-2026-34005 (HIGH): Xiongmai DVR/NVR (v4.03.R11) root OS command injection via DVRIP (port 34567). Authenticated attackers can fully compromise devices. Restrict access, monitor, and segment ASAP. https://radar.offseq.com/threat/cve-2026-34005-cwe-78-improper-neutralization-of-s-b117df4c #OffSeq #Xiongmai #Infosec #Vuln

0xor0ne Jan 2, 2023

Cool blog post by VulnCheck about exploiting Xiongmai devices

https://vulncheck.com/blog/xiongmai-iot-exploitation

#iot #embedded #xiongmai #infosec #cybersecurity

Xiongmai IoT Exploitation - Blog - VulnCheck

An examination of vulnerabilities affecting Xiongmai IoT devices, including exploit development and an analysis of exploitation in the wild.

Xiongmai IoT Exploitation - Blog - VulnCheck