CVE-2025-34051
published 2025-07-01CVE-2025-34051: A server-side request forgery vulnerability exists in multiple firmware versions of AVTECH DVR devices that exposes the…
PriorityP181medium6.9CVSS 4.0
AVNACLATNPRNUINVCNVILVANSCLSILSALEXCRXIRXARXMAVXMACXMATXMPRXMUIXMVCXMVIXMVAXMSCXMSIXMSAXSXAUXRXVXREXUX
ITWVulnCheck KEV
Exploited in the wild
EPSS
0.51%
39.6th percentile
A server-side request forgery vulnerability exists in multiple firmware versions of AVTECH DVR devices that exposes the /cgi-bin/nobody/Search.cgi?action=cgi_query endpoint without authentication. An attacker can manipulate the ip, port, and queryb64str parameters to make arbitrary HTTP requests from the DVR to internal or external systems, potentially exposing sensitive data or interacting with internal services.
Affected
71 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| avtech | dvr_devices | — | — |
| avtech | dvr_devices | — | — |
| avtech | dvr_devices | — | — |
| avtech | dvr_devices | — | — |
| avtech | dvr_devices | — | — |
| avtech | dvr_devices | — | — |
| avtech | dvr_devices | — | — |
| avtech | dvr_devices | — | — |
| avtech | dvr_devices | — | — |
| avtech | dvr_devices | — | — |
| avtech | dvr_devices | — | — |
| avtech | dvr_devices | — | — |
| avtech | dvr_devices | — | — |
| avtech | dvr_devices | — | — |
| avtech | dvr_devices | — | — |
| avtech | dvr_devices | — | — |
| avtech | dvr_devices | — | — |
| avtech | dvr_devices | — | — |
| avtech | dvr_devices | — | — |
| avtech | dvr_devices | — | — |
| avtech | dvr_devices | — | — |
| avtech | dvr_devices | — | — |
| avtech | dvr_devices | — | — |
| avtech | dvr_devices | — | — |
| avtech | dvr_devices | — | — |
CVSS provenance
nvdv4.06.9MEDIUMCVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
vulncheck6.9MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-h3gm-j47f-vqgx: A server-side request forgery vulnerability exists in multiple firmware versions of AVTECH DVR devices that exposes the /cgi-bin/nobody/Search
ghsa_unreviewed·2025-07-01
CVE-2025-34051 [MEDIUM] CWE-200 GHSA-h3gm-j47f-vqgx: A server-side request forgery vulnerability exists in multiple firmware versions of AVTECH DVR devices that exposes the /cgi-bin/nobody/Search
A server-side request forgery vulnerability exists in multiple firmware versions of AVTECH DVR devices that exposes the /cgi-bin/nobody/Search.cgi?action=cgi_query endpoint without authentication. An attacker can manipulate the ip, port, and queryb64str parameters to make arbitrary HTTP requests from the DVR to internal or external systems, potentially exposing sensitive data or interacting with internal services.
VulnCheck
Exposure of Sensitive Information to an Unauthorized Actor
vulncheck·2025·CVSS 6.9
CVE-2025-34051 [MEDIUM] Exposure of Sensitive Information to an Unauthorized Actor
Exposure of Sensitive Information to an Unauthorized Actor
A server-side request forgery vulnerability exists in multiple firmware versions of AVTECH DVR devices that exposes the /cgi-bin/nobody/Search.cgi?action=cgi_query endpoint without authentication. An attacker can manipulate the ip, port, and queryb64str parameters to make arbitrary HTTP requests from the DVR to internal or external systems, potentially exposing sensitive data or interacting with internal services.
Affected: AVTECH AVTECH DVR
Required Action: Apply remediations or mitigations per vendor instructions or discontinue use of the product if remediation or mitigations are unavailable.
Exploitation References: https://www.bleepingcomputer.com/news/security/malware-author-building-death-botnet-using-old-avtech-flaw/
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://avtech.com/https://vulncheck.com/advisories/avtech-ipcamera-nvr-dvr-mulitple-vulnshttps://web.archive.org/web/20161029201749/https://github.com/ebux/AVTECHhttps://web.archive.org/web/20240810225729/https://www.search-lab.hu/advisories/126-AVTech-devices-multiple-vulnerabilitieshttps://www.exploit-db.com/exploits/40500
2025-07-01
Published
Exploited in the wild