CVE-2017-14263

HIGH

Honeywell Enterprise DVR and MaxPro NVR Firmware - Session Fixation via Guest Account Session ID

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2017-14263. PoCs published by zzz66686.

AI-analyzed exploit summary This PoC demonstrates an authentication bypass vulnerability in Honeywell NVR devices (CVE-2017-14263) by leveraging a guest user's SessionID to create an admin account via a crafted RPC2 request.

Description

Honeywell NVR devices allow remote attackers to create a user account in the admin group by leveraging access to a guest account to obtain a session ID, and then sending that session ID in a userManager.addUser request to the /RPC2 URI. The attacker can login to the device with that new user account to fully control the device.

Exploits (1)

nomisec WORKING POC 5 stars
by zzz66686 · poc
https://github.com/zzz66686/CVE-2017-14263

This PoC demonstrates an authentication bypass vulnerability in Honeywell NVR devices (CVE-2017-14263) by leveraging a guest user's SessionID to create an admin account via a crafted RPC2 request.

Classification
Working Poc 90%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target: Honeywell NVR (version not specified)
No auth needed
Prerequisites: Network access to the target device · Guest user SessionID
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1
Core References
Third Party Advisory x_refsource_misc
https://github.com/zzz66686/Honeywell_NVR_vul

Scores

CVSS v3 8.1
EPSS 0.0374
EPSS Percentile 88.4%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-384
Status published
Products (7)
honeywell/enterprise_dvr_firmware
honeywell/fusion_iv_rev_c_firmware
honeywell/maxpro_nvr_hybrid_se_firmware
honeywell/maxpro_nvr_hybrid_xe_firmware
honeywell/maxpro_nvr_pe_firmware
honeywell/maxpro_nvr_se_firmware
honeywell/maxpro_nvr_xe_firmware
Published Sep 11, 2017
Tracked Since Feb 18, 2026