CVE-2025-67158

HIGH

Revotech I6032W-FHW v1.0.0014 - 20210517 - Authentication Bypass via /cgi-bin/jvsweb.cgi

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2025-67158. PoCs published by Remenis.

AI-analyzed exploit summary The repository describes an authentication bypass vulnerability (CVE-2025-67158) in Revotech I6032W-FHW IP cameras, where the `/cgi-bin/jvsweb.cgi` endpoint fails to validate `user.name` and `user.digest` fields, allowing unauthenticated access to administrative APIs. No exploit code is provided, only a detailed writeup and mitigation recommendations.

Description

An authentication bypass in the /cgi-bin/jvsweb.cgi endpoint of Revotech I6032W-FHW v1.0.0014 - 20210517 allows attackers to access sensitive information and escalate privileges via a crafted HTTP request.

Exploits (1)

nomisec WRITEUP
by Remenis · poc
https://github.com/Remenis/CVE-2025-67158

The repository describes an authentication bypass vulnerability (CVE-2025-67158) in Revotech I6032W-FHW IP cameras, where the `/cgi-bin/jvsweb.cgi` endpoint fails to validate `user.name` and `user.digest` fields, allowing unauthenticated access to administrative APIs. No exploit code is provided, only a detailed writeup and mitigation recommendations.

Classification
Writeup 90%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target: Revotech I6032W-FHW IP camera firmware V1.0.0014
No auth needed
Prerequisites: Network access to the vulnerable device
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Exploit, Third Party Advisory
https://github.com/Remenis/CVE-2025-67158

Scores

CVSS v3 7.5
EPSS 0.0047
EPSS Percentile 36.9%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment
Exploitation poc
Automatable yes
Technical Impact partial

Details

CWE
CWE-287
Status published
Products (1)
revotech/i6032w-fhw_firmware 1.0.0014
Published Jan 02, 2026
Tracked Since Feb 18, 2026