CVE-2025-1738

MEDIUM

Trivision Camera NC227WF <5.8.0 - Info Disclosure

Title source: llm

Description

A Password Transmitted over Query String vulnerability has been found in Trivision Camera NC227WF v5.8.0 from TrivisionSecurity, exposing this sensitive information to a third party.

Exploits (1)

nomisec WORKING POC
by n0n4m3x41 · poc
https://github.com/n0n4m3x41/CVE-2025-1738

References (1)

Scores

CVSS v3 6.2
EPSS 0.0011
EPSS Percentile 28.5%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

CWE
CWE-598
Status published
Products (1)
Trivision/Camera NC227WF 5.8.0
Published Feb 27, 2025
Tracked Since Feb 18, 2026