CVE-2019-25240 Rifatron 5brid DVR 5brid DVR (HD6-532/516, DX6-516/508/504, MX6-516/508/504, EH6-504) Unauthenticated Live Stream Disclosure via animate.cgi

🗓️ 24 Dec 2025 19:27:57Reported by VulnCheckType

Unauthenticated live stream access via animate.cgi on Rifatron fivebrid DVRs using Mobile Web Viewer.

Reporter	Title	Published	Views	Family All 8
Circl	CVE-2019-25240	24 Dec 202521:02	–	circl
CNNVD	Rifatron 5brid DVR 安全漏洞	24 Dec 202500:00	–	cnnvd
CVE	CVE-2019-25240	24 Dec 202519:27	–	cve
EUVD	EUVD-2025-205308	24 Dec 202521:30	–	euvd
NVD	CVE-2019-25240	24 Dec 202520:15	–	nvd
Positive Technologies	PT-2025-53326	24 Dec 202500:00	–	ptsecurity
Vulnrichment	CVE-2019-25240 Rifatron 5brid DVR 5brid DVR (HD6-532/516, DX6-516/508/504, MX6-516/508/504, EH6-504) Unauthenticated Live Stream Disclosure via animate.cgi	24 Dec 202519:27	–	vulnrichment
Zero Science Lab	Rifatron Intelligent Digital Security System (animate.cgi) Stream Disclosure	8 Sep 201900:00	–	zeroscience

[
  {
    "vendor": "Rifatron Co., Ltd.",
    "product": "DVR",
    "versions": [
      {
        "version": "5brid DVR (HD6-532/516, DX6-516/508/504, MX6-516/508/504, EH6-504)",
        "status": "affected"
      },
      {
        "version": "7brid DVR (HD3-16V2, DX3-16V2/08V2/04V2, MX3-08V2/04V2)",
        "status": "affected"
      },
      {
        "version": "Firmware: <=8.0 (000143)",
        "status": "affected"
      }
    ]
  }
]

Source	Link
exploit-db	www.exploit-db.com/exploits/47368
zeroscience	www.zeroscience.mk/en/vulnerabilities/ZSL-2019-5532.php
rifatron	www.rifatron.com/

24 Dec 2025 19:27Current

CVSS 48.7

CVSS 3.19.8

EPSS0.00406

CWE-306