Authentication Bypass Vulnerability in TBK and Rebranded DVR Devices
CVE-2018-9995

9.8CRITICAL

Key Information:

Vendor: Tbkvision
Status: Tbk-dvr4216 Firmware
Vendor: CVE Published:; 10 April 2018

Badges

👾 Exploit Exists🟡 Public PoC🟣 EPSS 94%

What is CVE-2018-9995?

Certain DVR devices, including the TBK DVR4104 and DVR4216 models, as well as various rebranded variants, are susceptible to a remote authentication bypass. By manipulating the 'Cookie: uid=admin' header, attackers can access sensitive functionalities without proper authentication. This vulnerability effectively allows unauthorized users to interact with device settings and potentially access video feeds. Notably, this issue can be exploited through specific requests that yield JSON data responses containing sensitive credentials.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2018-9995_dvr_credentials
Created by ezelf

DVR-Exploiter
Created by Cyb0r9

cve-2018-9995
Created by shacojx

References

https://www.bleepingcomputer.com/news/security/new-hackin...

x_refsource_MISC

https://www.exploit-db.com/exploits/44577/

exploitx_refsource_EXPLOIT-DB

http://misteralfa-hack.blogspot.cl/2018/04/tbk-vision-dvr...

x_refsource_MISC

EPSS Score

94% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

🟡
Public PoC available
Feb 18, 2024
👾
Exploit known to exist
Feb 18, 2024
Vulnerability published
Apr 10, 2018
Vulnerability Reserved
Apr 10, 2018

JSON

Tbkvision

Badges

What is CVE-2018-9995?

Exploit Proof of Concept (PoC)

References

EPSS Score

CVSS V3.1

Timeline