CVE-2025-1739

HIGH

Trivision Camera NC227WF v5.8.0 - Auth Bypass

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2025-1739. PoCs published by n0n4m3x41.

AI-analyzed exploit summary The repository provides a functional proof-of-concept for CVE-2025-1739, demonstrating an authentication bypass in Trivision Camera NC227WF via leaked Basic Auth tokens. It includes detailed steps to exploit the vulnerability, including payloads and token decoding.

Description

An Authentication Bypass vulnerability has been found in Trivision Camera NC227WF v5.8.0 from TrivisionSecurity. This vulnerability allows an attacker to retrieve administrator's credentials in cleartext by sending a request against the server using curl with random credentials to "/en/player/activex_pal.asp" and successfully authenticating the application.

Exploits (1)

nomisec WORKING POC
by n0n4m3x41 · poc
https://github.com/n0n4m3x41/CVE-2025-1739

The repository provides a functional proof-of-concept for CVE-2025-1739, demonstrating an authentication bypass in Trivision Camera NC227WF via leaked Basic Auth tokens. It includes detailed steps to exploit the vulnerability, including payloads and token decoding.

Classification
Working Poc 95%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target: Trivision Camera NC227WF (Firmware 5.80 build 20141010)
No auth needed
Prerequisites: network access to the camera · knowledge of the camera's IP and port
devstral-2 · analyzed Apr 09, 2026 Full analysis →

References (1)

Core 1

Scores

CVSS v3 7.1
EPSS 0.0029
EPSS Percentile 20.2%
Attack Vector ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable yes
Technical Impact partial

Details

CWE
CWE-288
Status published
Products (1)
Trivision/Camera NC227WF 5.8.0
Published Feb 27, 2025
Tracked Since Feb 18, 2026