CVE-2025-34054

An unauthenticated command injection vulnerability exists in AVTECH DVR devices via Search.cgi?action=cgi_query. The use of wget without input sanitization allows attackers to inject shell commands through the username or queryb64str parameters, executing commands as root. Exploitation evidence was observed by the Shadowserver Foundation on 2025-03-07 UTC.

CVSS

No CVSS.

References

Link	Resource
https://avtech.com/
https://vulncheck.com/advisories/avtech-ipcamera-nvr-dvr-mulitple-vulns
https://web.archive.org/web/20161029201749/https://github.com/ebux/AVTECH
https://web.archive.org/web/20240810225729/https://www.search-lab.hu/advisories/126-AVTech-devices-multiple-vulnerabilities
https://www.exploit-db.com/exploits/40500

Configurations

No configuration.

History

17 Nov 2025, 22:15

Type	Values Removed	Values Added
CWE	~~CWE-20~~
Summary	(en) An unauthenticated command injection vulnerability exists in AVTECH DVR devices via Search.cgi?action=cgi_query. The use of wget without input sanitization allows attackers to inject shell commands through the username or queryb64str parameters, executing commands as root. Exploitation evidence was observed by the Shadowserver Foundation on 2025-01-04 UTC.	(en) An unauthenticated command injection vulnerability exists in AVTECH DVR devices via Search.cgi?action=cgi_query. The use of wget without input sanitization allows attackers to inject shell commands through the username or queryb64str parameters, executing commands as root. Exploitation evidence was observed by the Shadowserver Foundation on 2025-03-07 UTC.

17 Nov 2025, 21:15

Type	Values Removed	Values Added
Summary	(en) An unauthenticated command injection vulnerability exists in AVTECH DVR devices via Search.cgi?action=cgi_query. The use of wget without input sanitization allows attackers to inject shell commands through the username or queryb64str parameters, executing commands as root.	(en) An unauthenticated command injection vulnerability exists in AVTECH DVR devices via Search.cgi?action=cgi_query. The use of wget without input sanitization allows attackers to inject shell commands through the username or queryb64str parameters, executing commands as root. Exploitation evidence was observed by the Shadowserver Foundation on 2025-01-04 UTC.

03 Jul 2025, 15:14

Type	Values Removed	Values Added
Summary		(es) Existe una vulnerabilidad de inyección de comandos no autenticados en dispositivos AVTECH DVR mediante Search.cgi?action=cgi_query. El uso de wget sin depuración de entrada permite a los atacantes inyectar comandos de shell mediante los parámetros `username` o `queryb64str`, ejecutándolos como root.

01 Jul 2025, 15:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-07-01 15:15

Updated : 2025-11-17 22:15

NVD link : CVE-2025-34054

Mitre link : CVE-2025-34054

CVE.ORG link : CVE-2025-34054

JSON object : View

Products Affected

No product.

CWE

CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

JSON object

Attach tags to CVE-2025-34054

Attach tags to `CVE-2025-34054`