2 matches found
CVE-2025-34043
creationtimestamp| type| source ---|---|--- 2025-06-26 16:51:55+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/19634 2025-06-26 20:29:58+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lsjxqh25vc2m 2025-06-27 21:02:20+00:00| seen|...
CVE-2025-34043
Vacron NVR devices (v1.4) are affected by a remote command injection due to improper input sanitization in the board.cgi script. The issue allows unauthenticated attackers to pass arbitrary commands to the underlying OS via crafted HTTP requests, resulting in remote code execution with the web se...