Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/07/03 3:22 p.m.16 views

CVE-2025-34053

An authentication bypass vulnerability exists in AVTECH IP camera, DVR, and NVR devices’ streamd web server. The strstr function is used to identify ".cab" requests, allowing any URL containing ".cab" to bypass authentication and access protected endpoints...

6.9CVSS7.5AI score0.0055EPSS
Exploits0References1
NVD
NVD
added 2025/07/01 3:15 p.m.8 views

CVE-2025-34053

An authentication bypass vulnerability exists in AVTECH IP camera, DVR, and NVR devices’ streamd web server. The strstr function is used to identify ".cab" requests, allowing any URL containing ".cab" to bypass authentication and access protected endpoints...

6.9CVSS0.0055EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2025/07/01 2:45 p.m.3 views

CVE-2025-34053 AVTECH IP camera, DVR, and NVR Devices Authentication Bypass via .cab Path Manipulation

An authentication bypass vulnerability exists in AVTECH IP camera, DVR, and NVR devices’ streamd web server. The strstr function is used to identify ".cab" requests, allowing any URL containing ".cab" to bypass authentication and access protected endpoints...

6.9CVSS7.4AI score0.0055EPSS
Exploits0References5
CVE
CVE
added 2025/07/01 2:45 p.m.31 views

CVE-2025-34053

CVE-2025-34053 affects AVTECH IP cameras, DVRs, and NVRs and stems from the streamd web server. The root cause is misuse of strstr to identify ".cab" requests, allowing any URL containing ".cab" to bypass authentication and access protected endpoints. The CVE’s published metrics indicate a CVSSv4...

6.9CVSS6.8AI score0.0055EPSS
Exploits0References5
Rows per page
Query Builder