Description
Buffer Overflow vulnerability exists in multiple versions of TB-eye network recorders and AHD recorders. The CGI process may be terminated abnormally by processing a specially crafted request.
References (2)
Core 2
Core References
Various Sources
https://www.tbeye.com/topics/ahd/
Third Party Advisory
https://jvn.jp/en/vu/JVNVU93396297/
Scores
CVSS v3
5.3
EPSS
0.0036
EPSS Percentile
57.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
yes
Technical Impact
partial
Details
CWE
CWE-120
Status
published
Products (17)
TB-eye Ltd./HRX-1621/TE
firmware versions Ver3.05.62 and earlier
TB-eye Ltd./HRX-1635/TE
firmware versions Ver5.31.72 and earlier
TB-eye Ltd./HRX-421FN/TE
firmware versions Ver3.05.62 and earlier
TB-eye Ltd./HRX-435FN/TE
firmware versions Ver5.31.72 and earlier
TB-eye Ltd./HRX-821/TE
firmware versions Ver3.05.62 and earlier
TB-eye Ltd./HRX-835/TE
firmware versions Ver5.31.72 and earlier
TB-eye Ltd./PRN-4011N/TE
firmware versions Ver2.51p_231208081715 and earlier
TB-eye Ltd./XRN-1610SN/TE
firmware versions Ver2.47b_210516234524 and earlier
TB-eye Ltd./XRN-1620S/TE
firmware versions Ver5.34.12 and earlier
TB-eye Ltd./XRN-3210R/TE
firmware versions Ver5.34.12 and earlier
... and 7 more
Published
Jun 27, 2025
Tracked Since
Feb 18, 2026