CVE-2023-53774

CRITICAL

MiniDVBLinux 5.4 - RCE

Title source: llm

Description

MiniDVBLinux 5.4 contains a remote code execution vulnerability in the SVDRP protocol that allows remote attackers to send commands to manipulate TV systems. Attackers can send crafted SVDRP commands through the svdrpsend.sh script to execute messages and potentially control the video disk recorder remotely.

Exploits (1)

exploitdb WORKING POC

by LiquidWorm · textremotehardware

https://www.exploit-db.com/exploits/51093

View Code ZIP pw:eip

References (5)

[Exploit, Third Party Advisory, VDB Entry] https://www.exploit-db.com/exploits/51093

[Not Applicable] https://www.linuxtv.org/vdrwiki/index.php/SVDRP#The_commands

[Product] https://www.minidvblinux.de

[Third Party Advisory] https://www.vulncheck.com/advisories/minidvblinux-simple-videodiskrecorder-protocol-remote-code-execution

[Exploit, Third Party Advisory] https://www.zeroscience.mk/en/vulnerabilities/ZSL-2022-5714.php

Scores

CVSS v3 9.8

EPSS 0.0233

EPSS Percentile 84.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-306

Status published

Products (2)

minidvblinux/minidvblinux < 5.4

MiniDVBLinux/Simple VideoDiskRecorder Protocol SVDRP (svdrpsend.sh) Exploit <=5.4

Published Dec 09, 2025

Tracked Since Feb 18, 2026