{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-34065", "assignerOrgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "state": "PUBLISHED", "assignerShortName": "VulnCheck", "dateReserved": "2025-04-15T19:15:22.549Z", "datePublished": "2025-07-01T14:47:23.621Z", "dateUpdated": "2026-04-07T14:09:18.570Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "modules": ["Search.cgi", "username parameter", "queryb64str"], "product": "IP camera, DVR, and NVR Devices", "vendor": "AVTECH", "versions": [{"status": "affected", "version": "1000-1000-1000-1000"}, {"status": "affected", "version": "1000C-1000C-1000C-1000C"}, {"status": "affected", "version": "1001-1000-1000-1000"}, {"status": "affected", "version": "1001-1001-1000-1000"}, {"status": "affected", "version": "1002-1000-1000-1000"}, {"status": "affected", "version": "1002-1002-1000-1002"}, {"status": "affected", "version": "1002D-1000D-1000D-1000D"}, {"status": "affected", "version": "1003-1000-1000-1001"}, {"status": "affected", "version": "1003-1001-1001-1000"}, {"status": "affected", "version": "1003-1002-1001-1000"}, {"status": "affected", "version": "1004-1000-1000-1000"}, {"status": "affected", "version": "1004-1001-1001-1001"}, {"status": "affected", "version": "1004-1002-1000-1001"}, {"status": "affected", "version": "1004-1003-1001-1002"}, {"status": "affected", "version": "1004-1003-1002-1001"}, {"status": "affected", "version": "1004A-1001A-1002A-1000A"}, {"status": "affected", "version": "1005-1002-1001-1002"}, {"status": "affected", "version": "1005-1003-1001-1002"}, {"status": "affected", "version": "1005-1004-1002-1001"}, {"status": "affected", "version": "1005A-1001A-1002A-1001A"}, {"status": "affected", "version": "1005D-1001D-1002D-1001D"}, {"status": "affected", "version": "1006-1002-1001-1002"}, {"status": "affected", "version": "1006-1003-1001-1001"}, {"status": "affected", "version": "1006-1004-1003-1001"}, {"status": "affected", "version": "1007-1001-1003-1001"}, {"status": "affected", "version": "1007-1001-1004-1003"}, {"status": "affected", "version": "1007-1002-1001-1000"}, {"status": "affected", "version": "1007-1002-1001-1003"}, {"status": "affected", "version": "1007-1002-1003-1002"}, {"status": "affected", "version": "1007-1004-1003-1001"}, {"status": "affected", "version": "1008-1001-1003-1002"}, {"status": "affected", "version": "1008-1004-1004-1001"}, {"status": "affected", "version": "1008D-1003D-1004D-1002D"}, {"status": "affected", "version": "1008J-1004J-1004J-1001J"}, {"status": "affected", "version": "1009-1001-1004-1001"}, {"status": "affected", "version": "1009-1002-1005-1003"}, {"status": "affected", "version": "1009-1003-1001-1003"}, {"status": "affected", "version": "1009-1003-1005-1002"}, {"status": "affected", "version": "1010-1001-1004-1001"}, {"status": "affected", "version": "1010-1001-1004-1002"}, {"status": "affected", "version": "1010-1003-1005-1002"}, {"status": "affected", "version": "1010-1003-1006-1003"}, {"status": "affected", "version": "1010-1003-1006-1004"}, {"status": "affected", "version": "1010-1004-1007-1001"}, {"status": "affected", "version": "1010J-1001J-1004J-1001J"}, {"status": "affected", "version": "1010N-1003N-1005N-1002N"}, {"status": "affected", "version": "1011-1001-1002A-1002"}, {"status": "affected", "version": "1011-1001-1002D-1002"}, {"status": "affected", "version": "1011-1001-1003-1002"}, {"status": "affected", "version": "1011-1001-1004-1002"}, {"status": "affected", "version": "1011-1001-1005-1002"}, {"status": "affected", "version": "1011-1004-1005-1002"}]}], "credits": [{"lang": "en", "type": "finder", "value": "Gergely Eberhardt (SEARCH-LAB.hu)"}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "An authentication bypass vulnerability exists in AVTECH IP camera, DVR, and NVR devices\u2019 streamd web server. The strstr() function allows unauthenticated access to any request containing \"/nobody\" in the URL, bypassing login controls."}], "value": "An authentication bypass vulnerability exists in AVTECH IP camera, DVR, and NVR devices\u2019 streamd web server. The strstr() function allows unauthenticated access to any request containing \"/nobody\" in the URL, bypassing login controls."}], "impacts": [{"capecId": "CAPEC-115", "descriptions": [{"lang": "en", "value": "CAPEC-115 Authentication Bypass"}]}, {"capecId": "CAPEC-137", "descriptions": [{"lang": "en", "value": "CAPEC-137 Parameter Injection"}]}], "metrics": [{"cvssV4_0": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "NETWORK", "baseScore": 6.9, "baseSeverity": "MEDIUM", "privilegesRequired": "NONE", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N", "version": "4.0", "vulnAvailabilityImpact": "LOW", "vulnConfidentialityImpact": "LOW", "vulnIntegrityImpact": "LOW", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-290", "description": "CWE-290 Authentication Bypass by Spoofing", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "shortName": "VulnCheck", "dateUpdated": "2026-04-07T14:09:18.570Z"}, "references": [{"tags": ["exploit"], "url": "https://www.exploit-db.com/exploits/40500"}, {"tags": ["product"], "url": "https://avtech.com/"}, {"tags": ["third-party-advisory", "technical-description"], "url": "https://web.archive.org/web/20240810225729/https://www.search-lab.hu/advisories/126-AVTech-devices-multiple-vulnerabilities"}, {"tags": ["exploit"], "url": "https://web.archive.org/web/20161029201749/https://github.com/ebux/AVTECH"}, {"tags": ["third-party-advisory"], "url": "https://vulncheck.com/advisories/avtech-ipcamera-nvr-dvr-mulitple-vulns"}], "source": {"discovery": "UNKNOWN"}, "title": "AVTECH IP camera, DVR, and NVR Devices Authentication Bypass via /nobody URL Path", "x_generator": {"engine": "Vulnogram 0.2.0"}, "datePublic": "2016-10-11T00:00:00.000Z"}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-07-01T18:35:32.244766Z", "id": "CVE-2025-34065", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-07-01T18:36:04.496Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-34065", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-07-01T18:35:32.244766Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-07-01T18:35:58.115Z"}}], "cna": {"title": "AVTECH IP camera, DVR, and NVR Devices Authentication Bypass via /nobody URL Path", "source": {"discovery": "UNKNOWN"}, "credits": [{"lang": "en", "type": "finder", "value": "Gergely Eberhardt (SEARCH-LAB.hu)"}], "impacts": [{"capecId": "CAPEC-115", "descriptions": [{"lang": "en", "value": "CAPEC-115 Authentication Bypass"}]}, {"capecId": "CAPEC-137", "descriptions": [{"lang": "en", "value": "CAPEC-137 Parameter Injection"}]}], "metrics": [{"format": "CVSS", "cvssV4_0": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "NOT_DEFINED", "baseScore": 6.9, "Automatable": "NOT_DEFINED", "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N", "providerUrgency": "NOT_DEFINED", "userInteraction": "NONE", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "NONE", "subIntegrityImpact": "NONE", "vulnIntegrityImpact": "LOW", "subAvailabilityImpact": "NONE", "vulnAvailabilityImpact": "LOW", "subConfidentialityImpact": "NONE", "vulnConfidentialityImpact": "LOW", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "AVTECH", "modules": ["Search.cgi", "username parameter", "queryb64str"], "product": "IP camera, DVR, and NVR Devices", "versions": [{"status": "affected", "version": "1000-1000-1000-1000"}, {"status": "affected", "version": "1000C-1000C-1000C-1000C"}, {"status": "affected", "version": "1001-1000-1000-1000"}, {"status": "affected", "version": "1001-1001-1000-1000"}, {"status": "affected", "version": "1002-1000-1000-1000"}, {"status": "affected", "version": "1002-1002-1000-1002"}, {"status": "affected", "version": "1002D-1000D-1000D-1000D"}, {"status": "affected", "version": "1003-1000-1000-1001"}, {"status": "affected", "version": "1003-1001-1001-1000"}, {"status": "affected", "version": "1003-1002-1001-1000"}, {"status": "affected", "version": "1004-1000-1000-1000"}, {"status": "affected", "version": "1004-1001-1001-1001"}, {"status": "affected", "version": "1004-1002-1000-1001"}, {"status": "affected", "version": "1004-1003-1001-1002"}, {"status": "affected", "version": "1004-1003-1002-1001"}, {"status": "affected", "version": "1004A-1001A-1002A-1000A"}, {"status": "affected", "version": "1005-1002-1001-1002"}, {"status": "affected", "version": "1005-1003-1001-1002"}, {"status": "affected", "version": "1005-1004-1002-1001"}, {"status": "affected", "version": "1005A-1001A-1002A-1001A"}, {"status": "affected", "version": "1005D-1001D-1002D-1001D"}, {"status": "affected", "version": "1006-1002-1001-1002"}, {"status": "affected", "version": "1006-1003-1001-1001"}, {"status": "affected", "version": "1006-1004-1003-1001"}, {"status": "affected", "version": "1007-1001-1003-1001"}, {"status": "affected", "version": "1007-1001-1004-1003"}, {"status": "affected", "version": "1007-1002-1001-1000"}, {"status": "affected", "version": "1007-1002-1001-1003"}, {"status": "affected", "version": "1007-1002-1003-1002"}, {"status": "affected", "version": "1007-1004-1003-1001"}, {"status": "affected", "version": "1008-1001-1003-1002"}, {"status": "affected", "version": "1008-1004-1004-1001"}, {"status": "affected", "version": "1008D-1003D-1004D-1002D"}, {"status": "affected", "version": "1008J-1004J-1004J-1001J"}, {"status": "affected", "version": "1009-1001-1004-1001"}, {"status": "affected", "version": "1009-1002-1005-1003"}, {"status": "affected", "version": "1009-1003-1001-1003"}, {"status": "affected", "version": "1009-1003-1005-1002"}, {"status": "affected", "version": "1010-1001-1004-1001"}, {"status": "affected", "version": "1010-1001-1004-1002"}, {"status": "affected", "version": "1010-1003-1005-1002"}, {"status": "affected", "version": "1010-1003-1006-1003"}, {"status": "affected", "version": "1010-1003-1006-1004"}, {"status": "affected", "version": "1010-1004-1007-1001"}, {"status": "affected", "version": "1010J-1001J-1004J-1001J"}, {"status": "affected", "version": "1010N-1003N-1005N-1002N"}, {"status": "affected", "version": "1011-1001-1002A-1002"}, {"status": "affected", "version": "1011-1001-1002D-1002"}, {"status": "affected", "version": "1011-1001-1003-1002"}, {"status": "affected", "version": "1011-1001-1004-1002"}, {"status": "affected", "version": "1011-1001-1005-1002"}, {"status": "affected", "version": "1011-1004-1005-1002"}], "defaultStatus": "unaffected"}], "references": [{"url": "https://www.exploit-db.com/exploits/40500", "tags": ["exploit"]}, {"url": "https://avtech.com/", "tags": ["product"]}, {"url": "https://web.archive.org/web/20240810225729/https://www.search-lab.hu/advisories/126-AVTech-devices-multiple-vulnerabilities", "tags": ["third-party-advisory", "technical-description"]}, {"url": "https://web.archive.org/web/20161029201749/https://github.com/ebux/AVTECH", "tags": ["exploit"]}, {"url": "https://vulncheck.com/advisories/avtech-ipcamera-nvr-dvr-mulitple-vulns", "tags": ["third-party-advisory"]}], "x_generator": {"engine": "Vulnogram 0.2.0"}, "descriptions": [{"lang": "en", "value": "An authentication bypass vulnerability exists in AVTECH IP camera, DVR, and NVR devices\u2019 streamd web server. The strstr() function allows unauthenticated access to any request containing \"/nobody\" in the URL, bypassing login controls.", "supportingMedia": [{"type": "text/html", "value": "An authentication bypass vulnerability exists in AVTECH IP camera, DVR, and NVR devices\u2019 streamd web server. The strstr() function allows unauthenticated access to any request containing \"/nobody\" in the URL, bypassing login controls.", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-290", "description": "CWE-290 Authentication Bypass by Spoofing"}]}], "providerMetadata": {"orgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "shortName": "VulnCheck", "dateUpdated": "2025-07-01T14:47:23.621Z"}}}, "cveMetadata": {"cveId": "CVE-2025-34065", "state": "PUBLISHED", "dateUpdated": "2025-07-01T18:36:04.496Z", "dateReserved": "2025-04-15T19:15:22.549Z", "assignerOrgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "datePublished": "2025-07-01T14:47:23.621Z", "assignerShortName": "VulnCheck"}, "dataVersion": "5.1"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "An authentication bypass vulnerability exists in AVTECH IP camera, DVR, and NVR devices\u2019 streamd web server. The strstr() function allows unauthenticated access to any request containing \"/nobody\" in the URL, bypassing login controls."}, {"lang": "es", "value": "Existe una vulnerabilidad de omisi\u00f3n de autenticaci\u00f3n en el servidor web Streamd de AVTECH IP camera, DVR, y NVR. La funci\u00f3n strstr() permite el acceso no autenticado a cualquier solicitud que contenga \"/nobody\" en la URL, omitiendo as\u00ed los controles de inicio de sesi\u00f3n."}], "id": "CVE-2025-34065", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "NETWORK", "availabilityRequirement": "NOT_DEFINED", "baseScore": 6.9, "baseSeverity": "MEDIUM", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "NONE", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "LOW", "vulnConfidentialityImpact": "LOW", "vulnIntegrityImpact": "LOW", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "disclosure@vulncheck.com", "type": "Secondary"}]}, "published": "2025-07-01T15:15:25.187", "references": [{"source": "disclosure@vulncheck.com", "url": "https://avtech.com/"}, {"source": "disclosure@vulncheck.com", "url": "https://vulncheck.com/advisories/avtech-ipcamera-nvr-dvr-mulitple-vulns"}, {"source": "disclosure@vulncheck.com", "url": "https://web.archive.org/web/20161029201749/https://github.com/ebux/AVTECH"}, {"source": "disclosure@vulncheck.com", "url": "https://web.archive.org/web/20240810225729/https://www.search-lab.hu/advisories/126-AVTech-devices-multiple-vulnerabilities"}, {"source": "disclosure@vulncheck.com", "url": "https://www.exploit-db.com/exploits/40500"}], "sourceIdentifier": "disclosure@vulncheck.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-290"}], "source": "disclosure@vulncheck.com", "type": "Secondary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-28T11:08:50.103689+00:00", "value": {"mitigation_remediation": ["Apply the latest vendor patch or firmware update for AVTECH IP camera, DVR, and NVR devices if available", "Configure a firewall or reverse proxy to reject any HTTP requests that contain \"/nobody\" in the URL path", "Restrict access to the device\u2019s web interface to trusted networks or local hosts only, or disable the interface when it is not needed"], "summary": {"action": "Patch Now", "impact": "Authentication Bypass"}, "threat_synthesis": {"affected_systems": "The affected equipment is the AVTECH IP camera, DVR, and NVR product line. No specific firmware revisions or model numbers were cited; the vulnerability is reported to affect the base streamd web server present in all AVTECH devices that host this component.", "description_and_impact": "An authentication bypass flaw exists in the streamd web server of AVTECH IP camera, DVR, and NVR devices. The flaw is caused by the strstr() function that permits any HTTP request containing the path fragment \"/nobody\" to be processed without requiring login credentials, effectively bypassing the device\u2019s authentication mechanism. While the description does not explicitly state what functions become available after bypass, it is inferred that an attacker could access any privileged functionality normally protected by authentication, such as viewing live streams or changing configuration settings.", "risk_and_exploitability": "The CVSS score of 6.9 indicates a moderate severity level. The EPSS score is reported to be less than 1%, suggesting that exploitation is currently unlikely, and the vulnerability is not listed in the CISA KEV catalog. The most probable attack vector is an unauthenticated HTTP request directed at the device\u2019s web interface, containing the substring \"/nobody\" in the URL path. If the device is reachable from an untrusted network or the internet, an attacker could exploit this path without any credentials or additional privileges."}}}}, "created": "2026-04-28T11:15:26.095538+00:00", "updated": "2026-04-28T11:15:26.095549+00:00", "vendors": []}