[Japanese]
|
JVNDB-2025-007552
|
Multiple vulnerabilities in TB-eye network recorders and AHD recorders
|
Network recorders and AHD recorders provided by TB-eye Ltd. contain multiple vulnerabilities listed below.
* OS command injection (CWE-78) - CVE-2025-36529
* Classic buffer overflow (CWE-120) - CVE-2025-41418
Chuya Hayakawa and Ryo Kamino of 00One, Inc. reported these vulnerabilities to JPCERT/CC.
JPCERT/CC coordinated with the developer.
|
CVSS V3 Severity: Base Metrics 7.2 (High) [Other]
- Attack Vector: Network
- Attack Complexity: Low
- Privileges Required: High
- User Interaction: None
- Scope: Unchanged
- Confidentiality Impact: High
- Integrity Impact: High
- Availability Impact: High
The above CVSS base scores have been assigned for CVE-2025-36529
|
CVSS V3 Severity:
Base Metrics5.3 (Medium) [Other]
- Attack Vector: Network
- Attack Complexity: Low
- Privileges Required: None
- User Interaction: None
- Scope: Unchanged
- Confidentiality Impact: None
- Integrity Impact: None
- Availability Impact: Low
The above CVSS base scores have been assigned for CVE-2025-41418
|
|
TB-eye Ltd.
- HRX-1621/TE firmware versions Ver3.05.62 and earlier
- HRX-1635/TE firmware versions Ver5.31.72 and earlier
- HRX-421FN/TE firmware versions Ver3.05.62 and earlier
- HRX-435FN/TE firmware versions Ver5.31.72 and earlier
- HRX-821/TE firmware versions Ver3.05.62 and earlier
- HRX-835/TE firmware versions Ver5.31.72 and earlier
- PRN-4011N/TE firmware versions Ver2.51p_231208081715 and earlier
- XRN-1610SN/TE firmware versions Ver2.47b_210516234524 and earlier
- XRN-1620S/TE firmware versions Ver5.34.12 and earlier
- XRN-3210R/TE firmware versions Ver5.34.12 and earlier
- XRN-410SN/TE firmware versions Ver2.47b_220119153805 and earlier
- XRN-425SFN/TE firmware versions Ver5.31.32 and earlier
- XRN-426S firmware versions Ver5.33.12 and earlier
- XRN-6410DR/TE firmware versions Ver5.34.12 and earlier
- XRN-6410R/TE firmware versions Ver5.34.12 and earlier
- XRN-810SN/TE firmware versions Ver2.47b_220119153805 and earlier
- XRN-820S/TE firmware versions Ver5.34.12 and earlier
|
|
* An arbitrary OS command may be executed by an attacker who is logging in to the device (CVE-2025-36529)
* The CGI process may be terminated abnormally by processing a specially crafted request (CVE-2025-41418)
|
[Update the firmware]
Update the firmware to the latest version according to the information provided by the developer.
[Apply the workaround]
The developer recommends the users to change the administrator password to one hard to guess.
For more information, refer to the information provided by the developer.
|
TB-eye Ltd.
|
- Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')(CWE-120) [Other]
- OS Command Injection(CWE-78) [Other]
|
- CVE-2025-36529
- CVE-2025-41418
|
- JVN : JVNVU#93396297
|
- [2025/06/30]
Web page was published
|