CVE-2025-34054
CVE-2025-34054
10.0
CriticalPublished:
Last updated:
Source:disclosure@vulncheck.com
Deferred
Weakness (CWE)
CVSS Vector
v4.0- Attack Vector
- Network
- Attack Complexity
- Low
- Attack Requirements
- None
- Privileges Required
- None
- User Interaction
- None
- Confidentiality (Vulnerable)
- High
- Integrity (Vulnerable)
- High
- Availability (Vulnerable)
- High
- Confidentiality (Subsequent)
- High
- Integrity (Subsequent)
- High
- Availability (Subsequent)
- High
Description
An unauthenticated command injection vulnerability exists in AVTECH DVR devices via Search.cgi?action=cgi_query. The use of wget without input sanitization allows attackers to inject shell commands through the username or queryb64str parameters, executing commands as root. Exploitation evidence was observed by the Shadowserver Foundation on 2025-01-04 UTC.
References
disclosure@vulncheck.com
https://avtech.com/disclosure@vulncheck.com
https://vulncheck.com/advisories/avtech-ipcamera-nvr-dvr-mulitple-vulnsdisclosure@vulncheck.com
https://web.archive.org/web/20161029201749/https://github.com/ebux/AVTECHdisclosure@vulncheck.com
https://web.archive.org/web/20240810225729/https://www.search-lab.hu/advisories/126-AVTech-devices-multiple-vulnerabilitiesdisclosure@vulncheck.com
https://www.exploit-db.com/exploits/40500