LILIN DVR Command Injection via NTPUpdate in dvr_box_CVE-2025-34132

9.3 / 10

CRITICAL

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Description

A command injection vulnerability exists in LILIN Digital Video Recorder (DVR) devices prior to firmware version 2.0b60_20200207 via the Server field in the NTPUpdate configuration. The web service at /z/zbin/dvr_box fails to properly sanitize input, allowing remote attackers to inject and execute arbitrary commands as root by supplying specially crafted XML data to the DVRPOST interface. 777

Basic Information

ID CVE-2025-34132

Source VulnCheck

Published Jul 16, 2025 at 21:26

Modified Jul 17, 2025 at 13:39

Affected Product

Vendor Merit LILIN

Product DVR Firmware

Version *

Affected Versions Merit LILIN DVR Firmware *

CWE Classification

CWE-78 CWE-20

References

{
    "lastseen": "",
    "description": "A command injection vulnerability exists in LILIN Digital Video Recorder (DVR) devices prior to firmware version 2.0b60_20200207 via the Server field in the NTPUpdate configuration. The web service at /z/zbin/dvr_box fails to properly sanitize input, allowing remote attackers to inject and execute arbitrary commands as root by supplying specially crafted XML data to the DVRPOST interface. 777",
    "published": "2025-07-16T21:26:51.852Z",
    "modified": "2025-07-17T13:39:06.871Z",
    "type": "cve",
    "title": "LILIN DVR Command Injection via NTPUpdate in dvr_box",
    "source": "VulnCheck",
    "references": "https://blog.netlab.360.com/multiple-botnets-are-spreading-using-lilin-dvr-0-day/\nhttps://www.meritlilin.com/assets/uploads/support/file/M00158-TW.pdf\nhttps://www.vulncheck.com/advisories/lilin-dvr-multiple-vulnerabilities",
    "id": "CVE-2025-34132",
    "bulletinFamily": "",
    "cwe": [
        "CWE-78",
        "CWE-20"
    ],
    "cvelist": null,
    "sourceData": "Merit LILIN DVR Firmware *",
    "sourceHref": "",
    "cvss": {
        "score": 9.3,
        "severity": "CRITICAL",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "DVR Firmware",
    "version": "*",
    "vendor": "Merit LILIN",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}