Calgary, Alberta, Canada
sales@hackhalt.com
Free Download Free Download Free Download
Explore Pricing Explore Pricing Explore Pricing

Blog

"Prevention is cheaper than a breach"

Home / Threats / CVE-2026-0854

CVE-2026-0854 - DH032 Plugin

CVE-2026-0854

Vulnerability CVE-2026-0854 PLUGIN dh032 HIGH

Certain DVR/NVR models developed by Merit LILIN has a OS Command Injection vulnerability, allowing authenticated remote attackers to inject arbitrary OS commands and execute them on the device.

CVE-2026-0854

HIGH CVSS 8.7 Published 2026-01-12 Updated 2026-01-13
AI Risk High (86/100) Active Exploit: No strong signal Published Exploit: No public exploit references Priority: P2 Urgent
Severity Band HIGH
CVSS Vector CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Affected Components 20
Reference Links 2
AI Risk Engine High (86/100)
Exploitability High
Active Exploitation No strong signal
Published Exploit Status No public exploit references

Threat Timeline

  1. 2026-01-12 CVE published and first recorded in the threat feed.
  2. 2026-01-13 Record updated with latest vulnerability metadata.
  3. 2026-04-09 AI technical context refreshed for mitigation and impact guidance.
  4. Now Monitoring for follow-up changes, linked references, and new related CVEs.

AI Context

Machine-generated threat intelligence

AI Updated 12 days ago

AI enriched 12 days ago (2026-04-09 08:07 UTC)

Technical Summary

Certain DVR/NVR models developed by Merit LILIN has a OS Command Injection vulnerability, allowing authenticated remote attackers to inject arbitrary OS commands and execute them on the device.

Potential Impact

Severity is HIGH (CVSS 8.7). Depending on deployment context, affected components may be exposed to unauthorized actions or data integrity risk.

Exploitability Assessment

Exploitability is assessed as High based on remote code execution potential.

Primary risk drivers: remote code execution potential

Mitigation Recommendations

Validate affected product versions, prioritize patching, and monitor references for vendor remediation guidance. If immediate patching is not possible, apply compensating controls and limit exposure of vulnerable surfaces.

Detection & Monitoring

Track authentication anomalies, unexpected file writes, and suspicious plugin API activity around affected components.

Business Impact Lens

Prioritize remediation where affected components process customer data, admin sessions, or Internet-exposed workflows.

Affected Products

DH032 PLUGIN · dh032 Affected: >= 0, <= 1.0.28.3858 Fixed version not specified
DVR708 PLUGIN · dvr708 Affected: >= 0, <= 1.3.4 Fixed version not specified
DVR716 PLUGIN · dvr716 Affected: >= 0, <= 1.3.4 Fixed version not specified
DVR804 PLUGIN · dvr804 Affected: >= 0, <= 1.3.4 Fixed version not specified
DVR808 PLUGIN · dvr808 Affected: >= 0, <= 1.3.4 Fixed version not specified
DVR816 PLUGIN · dvr816 Affected: >= 0, <= 1.3.4 Fixed version not specified
NVR100L PLUGIN · nvr100l Affected: >= 0, <= 1.1.66 Fixed version not specified
NVR1400L PLUGIN · nvr1400l Affected: >= 0, <= 1.1.66 Fixed version not specified
NVR200L PLUGIN · nvr200l Affected: >= 0, <= 1.1.66 Fixed version not specified
NVR2400L PLUGIN · nvr2400l Affected: >= 0, <= 1.1.66 Fixed version not specified
NVR3216 PLUGIN · nvr3216 Affected: >= 0, <= 2.0.74.3921 Fixed version not specified
NVR3416 PLUGIN · nvr3416 Affected: >= 0, <= 2.0.74.3921 Fixed version not specified
NVR3416r PLUGIN · nvr3416r Affected: >= 0, <= 2.0.74.3921 Fixed version not specified
NVR3816 PLUGIN · nvr3816 Affected: >= 0, <= 2.0.74.3921 Fixed version not specified
NVR400L PLUGIN · nvr400l Affected: >= 0, <= 1.1.66 Fixed version not specified
NVR5104E PLUGIN · nvr5104e Affected: >= 0, <= 4.0.24.4078 Fixed version not specified
NVR5208E PLUGIN · nvr5208e Affected: >= 0, <= 4.0.24.4078 Fixed version not specified
NVR5416E PLUGIN · nvr5416e Affected: >= 0, <= 4.0.24.4078 Fixed version not specified
NVR5832 PLUGIN · nvr5832 Affected: >= 0, <= 4.0.24.4043 Fixed version not specified
NVR5832S PLUGIN · nvr5832s Affected: >= 0, <= 4.0.24.4043 Fixed version not specified

Related Vulnerabilities

Browse All Threats

Newest linked vulnerabilities to keep visitors exploring adjacent CVE coverage.

No related vulnerability records were found yet for this context.

Scroll to top