PT-2024-25275 · Avtech · Avtech Room Alert 4E

Name of the Vulnerable Software and Affected Versions: AVTECH Room Alert 4E version 4.4.0 Description: An issue in the SMTP Email Settings allows attackers to gain access to credentials in plaintext via a passback attack. This issue only affects products that are no longer supported by the...

AVTECH Software Room Alert 4E 安全漏洞

AVTECH Software Room Alert 4E is an environmental monitoring device from AVTECH Software. A security vulnerability exists in AVTECH Software Room Alert 4E version v4.4.0, which originated from a vulnerability that allows an attacker to gain access to plaintext credentials via a pass-back attack...

PT-2024-25276 · Avtech · Avtech Room Alert 4E

Name of the Vulnerable Software and Affected Versions: AVTECH Room Alert 4E version 4.4.0 Description: An issue in the Sensor Settings allows attackers to gain access to SMTP credentials in plaintext via a crafted AJAX request to an unspecified API endpoint. This issue only affects products that...

VulnCheck KEV: CVE-2025-34054

An unauthenticated command injection vulnerability exists in AVTECH DVR devices via Search.cgi?action=cgiquery. The use of wget without input sanitization allows attackers to inject shell commands through the username or queryb64str parameters, executing commands as root. Exploitation evidence...

CVE-2013-4982

AVTECH AVN801 DVR has a security bypass via the administration login captcha...

Design/Logic Flaw

AVTECH AVN801 DVR has a security bypass via the administration login captcha...

CVE-2013-4982

CVE-2013-4982 affects AVTECH AVN801 DVRs; authentication bypass is possible by using the login=quick parameter to bypass the login verification code, potentially granting unauthorized access to feeds or device settings. The issue stems from bypassing the admin login captcha, enabling access witho...

CVE-2013-4982

AVTECH AVN801 DVR has a security bypass via the administration login captcha...

AVTECH Software Room Alert 3E Elevation of Privilege Vulnerability

AVTECH Software Room Alert 3E is a device for monitoring the IT infrastructure environment from AVTECH Software, USA. The product is mainly used to monitor temperature, humidity, power, electricity and smoke in computer rooms or small data centers. A security vulnerability exists in AVTECH Softwa...

CVE-2019-13379

On AVTECH Room Alert 3E devices before 2.2.5, an attacker with access to the device's web interface may escalate privileges from an unauthenticated user to administrator by performing a cmd.cgi?action=ResetDefaults&src=RA reset and using the default credentials to get in...

Default credentials

On AVTECH Room Alert 3E devices before 2.2.5, an attacker with access to the device's web interface may escalate privileges from an unauthenticated user to administrator by performing a cmd.cgi?action=ResetDefaults&src=RA reset and using the default credentials to get in...

CVE-2019-13379

AVTECH Room Alert 3E devices with firmware versions prior to 2.2.5 are vulnerable to privilege escalation. An attacker who can access the device’s web interface can escalate from an unauthenticated user to administrator by sending cmd.cgi?action=ResetDefaults&src=RA reset and then using default c...

CVE-2019-13379

On AVTECH Room Alert 3E devices before 2.2.5, an attacker with access to the device's web interface may escalate privileges from an unauthenticated user to administrator by performing a cmd.cgi?action=ResetDefaults&src=RA reset and using the default credentials to get in...

Avtech IP Camera Default Credentials (HTTP)

The remote installation of Avtech SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.114064";...

AVTech AVC 787 DVR Default Credentials (HTTP)

The remote AVTech AVC 787 DVR device is using known default credentials. Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is fre...

AVTech AVC 7xx DVR Device Detection (HTTP)

HTTP based detection of AVTech AVC 7xx DVR devices. Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

VulnCheck KEV: CVE-2025-34051

A server-side request forgery vulnerability exists in multiple firmware versions of AVTECH DVR devices that exposes the /cgi-bin/nobody/Search.cgi?action=cgiquery endpoint without authentication. An attacker can manipulate the ip, port, and queryb64str parameters to make arbitrary HTTP...

AVTECH {DVR/NVR/IPC} IPCP API RCE

!/usr/bin/env python2.7 SOF Subject: AVTECH DVR/NVR/IPC IPCP API admin l/p, RCE 2018 bashis Attack vector: Remote Authentication: Anonymous no credentials needed Researcher: bashis March 2018 Authenticated Reverse Shell; Using admin l/p that we can retrieve with unauthenticated and undocumented...

AVTECH {DVR/NVR/IPC} Authenticated RCE

!/usr/bin/env python2.7 SOF Subject: AVTECH DVR/NVR/IPC Authenticated RCE 2018 bashis Attack vector: Remote Authentication: Authenticated Credentials needed Researcher: bashis March 2018 http://www.avtech.com.tw/ """ $./AVTECH-RCE.py --rhost 192.168.57.20 --rport 80 --lhost 192.168.57.1 --lport...

AVTECH Remote Command Execution Vulnerability in Multiple Products

AVTECH is a Taiwanese manufacturer of video surveillance equipment. The main products are surveillance equipment, network cameras, network video recorders and so on. A remote command execution vulnerability exists in AVTECH DVR/NVR/IPC devices. An attacker can exploit the vulnerability to perform...