SARA / Free Tools / CVE / CVE-2023-39435

CVE-2023-39435 — Zavio CF7500, CF7300, CF7201, CF7501, CB3211, CB3212, CB5220, CB6231, B8520, B82

Zavio CF7500, CF7300, CF7201, CF7501, CB3211, CB3212, CB5220, CB6231, B8520, B8220, and CD321 IP Cameras

CVSS
8.8 HIGH
EPSS
34.00% (top 43.70%)
CWE
CWE-121
Published
2023-11-08T22:54:00.819Z
Last modified
2025-01-16T21:26:22.506Z
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

01What is this vulnerability?

Zavio CF7500, CF7300, CF7201, CF7501, CB3211, CB3212, CB5220, CB6231, B8520, B8220, and CD321 IP Cameras

02Affected products

VendorProductVersions
ZavioIP Camera CF7500version M2.1.6.05
ZavioIP Camera CF7300version M2.1.6.05
ZavioIP Camera CF7201version M2.1.6.05
ZavioIP Camera CF7501version M2.1.6.05
ZavioIP Camera CB3211version M2.1.6.05
ZavioIP Camera CB3212version M2.1.6.05
ZavioIP Camera CB5220version M2.1.6.05
ZavioIP Camera CB6231version M2.1.6.05
ZavioIP Camera B8520version M2.1.6.05
ZavioIP Camera B8220version M2.1.6.05
ZavioIP Camera CD321version M2.1.6.05

03Active exploitation status

Not currently listed on the CISA Known Exploited Vulnerabilities (KEV) catalog. EPSS is the best forward-looking signal — see the EPSS row above.

04Recommended remediation

05Technical details

For the full vendor write-up, exploit chains, and reference implementations, see the references list in section 09.

06Detection signatures

Open the Sigma generator with a pre-filled prompt for this CVE to draft a starting detection in your stack of choice:

Open in Sigma generator →

07Related CVEs

No directly-cited follow-up CVEs in the KB record for this advisory. The references list in section 09 carries the vendor cross-references.

08Timeline

09References

Want this in your SOAR or SIEM?
SARA's API returns EPSS, CVSS, KEV, and an analyst-grade summary in one call.
Read the API reference →
EPSS detail → Search KEV → Ask SARA →