CVE-2025-34056 | AVTECH IP Camera/DVR/NVR System Command PwdGrp.cgi pwd/grp os command injection (Exploit 40500 / EDB-40500)

A vulnerability classified as critical has been found in AVTECH IP Camera, DVR and NVR. This affects an unknown part of the file PwdGrp.cgi of the component System Command Handler. The manipulation of the argument pwd/grp leads to os command injection.

This vulnerability is uniquely identified as CVE-2025-34056. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.VulDB Recent EntriesRead More