CVE-2025-34053

MEDIUM

AVTECH - Auth Bypass

Title source: llm

Description

An authentication bypass vulnerability exists in AVTECH IP camera, DVR, and NVR devices’ streamd web server. The strstr() function is used to identify ".cab" requests, allowing any URL containing ".cab" to bypass authentication and access protected endpoints.

Exploits (1)

exploitdb WRITEUP

by Gergely Eberhardt · pythonwebappscgi

https://www.exploit-db.com/exploits/40500

View Code ZIP pw:eip

References (5)

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/40500

[Various Sources] https://avtech.com/

[Various Sources] https://web.archive.org/web/20240810225729/https://www.search-lab.hu/advisories/126-AVTech-devices-multiple-vulnerabilities

[Various Sources] https://web.archive.org/web/20161029201749/https://github.com/ebux/AVTECH

[Third Party Advisory] https://vulncheck.com/advisories/avtech-ipcamera-nvr-dvr-mulitple-vulns

Scores

CVSS v4 6.9

EPSS 0.0040

EPSS Percentile 60.6%

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact partial

Details

CWE

CWE-290

Status published

Products (50)

AVTECH/IP camera, DVR, and NVR devices 1000-1000-1000-1000

AVTECH/IP camera, DVR, and NVR devices 1000C-1000C-1000C-1000C

AVTECH/IP camera, DVR, and NVR devices 1001-1000-1000-1000

AVTECH/IP camera, DVR, and NVR devices 1001-1001-1000-1000

AVTECH/IP camera, DVR, and NVR devices 1002-1000-1000-1000

AVTECH/IP camera, DVR, and NVR devices 1002-1002-1000-1002

AVTECH/IP camera, DVR, and NVR devices 1002D-1000D-1000D-1000D

AVTECH/IP camera, DVR, and NVR devices 1003-1000-1000-1001

AVTECH/IP camera, DVR, and NVR devices 1003-1001-1001-1000

AVTECH/IP camera, DVR, and NVR devices 1003-1002-1001-1000

... and 40 more

Published Jul 01, 2025

Tracked Since Feb 18, 2026