Buffer Overflow Vulnerability in TB-eye Network Recorders and AHD Recorders
CVE-2025-41418

6.9MEDIUM

Key Information:

Vendor: Tb-eye Ltd.
Status: Xrn-410sn/te; Xrn-810sn/te; Xrn-1610sn/te; Prn-4011n/te
Vendor: CVE Published:; 27 June 2025

🔔 Create Tb-eye Ltd. Vulnerability Alert

What is CVE-2025-41418?

A buffer overflow vulnerability has been identified in various versions of TB-eye network recorders and AHD recorders. This vulnerability may allow an attacker to exploit the CGI process, leading to abnormal termination by sending specially crafted requests. This raises a significant concern for users, highlighting the need for immediate attention to system security and potential patching solutions.

Affected Version(s)

HRX-1621/TE firmware versions Ver3.05.62 and earlier

HRX-1635/TE firmware versions Ver5.31.72 and earlier

HRX-421FN/TE firmware versions Ver3.05.62 and earlier

References

https://www.tbeye.com/topics/ahd/

https://jvn.jp/en/vu/JVNVU93396297/

CVSS V4

Score:

6.9

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 27, 2025
Vulnerability Reserved
Jun 24, 2025