[VULNERABILITY ALERT] CISA Adds 1 Known Exploited Vulnerability to KEV Catalog (2025/12/22-2025/12/28)

• Subject: [VULNERABILITY ALERT] CISA Adds 1 Known Exploited Vulnerability to KEV Catalog (2025/12/22-2025/12/28)

• Content Description:
  • Forwarded from Taiwan Computer Emergency Response Team/Coordination Center Security Alert TWCERTCC-200-202512-00000015
  • [CVE-2023-52163] Digiever DS-2105 Pro Missing Authorization Vulnerability (CVSS v3.1: 8.8)
  • [Known to be exploited by ransomware: Unknown] Digiever DS-2105 Pro contains a missing authorization vulnerability, which may allow command injection attacks via time_tzsetup.cgi.
• Affected Platforms:
  • Digiever DS-2105 Pro 3.1.0.71-11
• Recommended Actions:
  • [CVE-2023-52163] Affected products may have reached End of Life (EoL) and/or End of Service (EoS). Users should stop using these products.

Computer and Communication Center
Network Systems Division, Respectfully