VYPR
Vendor

AVTECH SECURITY Corporation

Products
15
CVEs
24
Across products
29
Status
Private

Products

15

Recent CVEs

24
View all 24 CVEs →
  • CVE-2013-4982CriDec 27, 2019
    risk 0.68cvss 9.8epss 0.13

    AVTECH AVN801 DVR has a security bypass via the administration login captcha

  • CVE-2025-34054CriJul 1, 2025
    risk 0.65cvss epss 0.03

    An unauthenticated command injection vulnerability exists in AVTECH DVR devices via Search.cgi?action=cgi_query. The use of wget without input sanitization allows attackers to inject shell commands through the username or queryb64str parameters, executing commands as…

  • CVE-2025-34056CriJul 1, 2025
    risk 0.61cvss epss 0.02

    An OS command injection vulnerability exists in AVTECH IP camera, DVR, and NVR devices via the PwdGrp.cgi endpoint, which handles user and group management operations. Authenticated users can supply input through the pwd or grp parameters, which are directly embedded into system…

  • CVE-2025-34055CriJul 1, 2025
    risk 0.61cvss epss 0.02

    An OS command injection vulnerability exists in AVTECH DVR, NVR, and IP camera devices within the adcommand.cgi endpoint, which interfaces with the ActionD daemon. Authenticated users can invoke the DoShellCmd operation, passing arbitrary input via the strCmd parameter. This…

  • CVE-2025-57201HigDec 3, 2025
    risk 0.57cvss 8.8epss 0.07

    AVTECH SECURITY Corporation DGM1104 FullImg-1015-1004-1006-1003 was discovered to contain an authenticated command injection vulnerability in the SMB server function. This vulnerability allows attackers to execute arbitrary commands via a crafted input.

  • CVE-2016-15047HigOct 9, 2025
    risk 0.57cvss epss 0.04

    AVTECH devices that include the CloudSetup.cgi management endpoint are vulnerable to authenticated OS command injection. The `exefile` parameter in CloudSetup.cgi is passed to the underlying system command execution without proper validation or whitelisting. An authenticated…

  • CVE-2025-50110HigSep 15, 2025
    risk 0.57cvss 8.8epss 0.00

    An issue was discovered in the method push.lite.avtech.com.AvtechLib.GetHttpsResponse in AVTECH EagleEyes Lite 2.0.0, the GetHttpsResponse method transmits sensitive information - including internal server URLs, account IDs, passwords, and device tokens - as plaintext query…

  • CVE-2019-13379HigJul 7, 2019
    risk 0.57cvss 8.8epss 0.03

    On AVTECH Room Alert 3E devices before 2.2.5, an attacker with access to the device's web interface may escalate privileges from an unauthenticated user to administrator by performing a cmd.cgi?action=ResetDefaults&src=RA reset and using the default credentials to get in.

  • CVE-2025-34066HigJul 1, 2025
    risk 0.54cvss epss 0.00

    An improper certificate validation vulnerability exists in AVTECH IP cameras, DVRs, and NVRs due to the use of wget with --no-check-certificate in scripts like SyncCloudAccount.sh and SyncPermit.sh. This exposes HTTPS communications to man-in-the-middle (MITM) attacks.

  • CVE-2008-3939HigSep 5, 2008
    risk 0.49cvss 7.5epss 0.02

    Directory traversal vulnerability in the web interface in AVTECH PageR Enterprise before 5.0.7 allows remote attackers to read arbitrary files via directory traversal sequences in the URI.

  • CVE-2024-33471HigMay 24, 2024
    risk 0.47cvss 7.2epss 0.00

    An issue in the Sensor Settings of AVTECH Room Alert 4E v4.4.0 allows attackers to gain access to SMTP credentials in plaintext via a crafted AJAX request. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

  • CVE-2025-34065MedJul 1, 2025
    risk 0.45cvss epss 0.01

    An authentication bypass vulnerability exists in AVTECH IP camera, DVR, and NVR devices’ streamd web server. The strstr() function allows unauthenticated access to any request containing "/nobody" in the URL, bypassing login controls.

  • CVE-2025-34053MedJul 1, 2025
    risk 0.45cvss epss 0.01

    An authentication bypass vulnerability exists in AVTECH IP camera, DVR, and NVR devices’ streamd web server. The strstr() function is used to identify ".cab" requests, allowing any URL containing ".cab" to bypass authentication and access protected endpoints.

  • CVE-2025-34051MedJul 1, 2025
    risk 0.45cvss epss 0.01

    A server-side request forgery vulnerability exists in multiple firmware versions of AVTECH DVR devices that exposes the /cgi-bin/nobody/Search.cgi?action=cgi_query endpoint without authentication. An attacker can manipulate the ip, port, and queryb64str parameters to make…

  • CVE-2025-34050MedJul 1, 2025
    risk 0.33cvss epss 0.00

    A cross-site request forgery (CSRF) vulnerability exists in the web interface of AVTECH IP camera, DVR, and NVR devices. An attacker can craft malicious requests that, when executed in the context of an authenticated user’s browser session, allow unauthorized changes to the…

  • CVE-2024-33470MedMay 24, 2024
    risk 0.32cvss 4.9epss 0.00

    An issue in the SMTP Email Settings of AVTECH Room Alert 4E v4.4.0 allows attackers to gain access to credentials in plaintext via a passback attack. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

  • CVE-2013-4981Mar 3, 2014
    risk 0.04cvss epss 0.07

    Buffer overflow in cgi-bin/user/Config.cgi in AVTECH AVN801 DVR with firmware 1017-1003-1009-1003 and earlier, and possibly other devices, allows remote attackers to cause a denial of service (device crash) and possibly execute arbitrary code via a long string in the…

  • CVE-2013-4980Mar 3, 2014
    risk 0.04cvss epss 0.07

    Buffer overflow in the RTSP Packet Handler in AVTECH AVN801 DVR with firmware 1017-1003-1009-1003 and earlier, and possibly other devices, allows remote attackers to cause a denial of service (device crash) and possibly execute arbitrary code via a long string in the URI in an…

  • CVE-2025-57202Dec 3, 2025
    risk 0.00cvss epss 0.01

    A stored cross-site scripting (XSS) vulnerability in the PwdGrp.cgi endpoint of AVTECH SECURITY Corporation DGM1104 FullImg-1015-1004-1006-1003 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the username field.

  • CVE-2025-57199Dec 3, 2025
    risk 0.00cvss epss 0.03

    AVTECH SECURITY Corporation DGM1104 FullImg-1015-1004-1006-1003 was discovered to contain an authenticated command injection vulnerability in the NetFailDetectD binary. This vulnerability allows attackers to execute arbitrary commands via a crafted input.