ByteOS Network

HRX-821/TE

Source -

CNA

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -

2Vulnerabilities found

CVE-2025-41418

Assigner-JPCERT/CC

View Details

Assigner-JPCERT/CC

CVSS Score-6.9||MEDIUM

EPSS-0.05% / 15.89%

7 Day CHG~0.00%

Published-27 Jun, 2025 | 05:24

Updated-30 Jun, 2025 | 18:40

Buffer Overflow vulnerability exists in multiple versions of TB-eye network recorders and AHD recorders. The CGI process may be terminated abnormally by processing a specially crafted request.

Vendor-TB-eye Ltd.

Product-HRX-821/TE XRN-6410R/TE HRX-421FN/TE XRN-426S XRN-1620S/TE PRN-4011N/TE XRN-6410DR/TE XRN-410SN/TE HRX-1635/TE XRN-425SFN/TE HRX-435FN/TE XRN-3210R/TE XRN-820S/TE HRX-1621/TE HRX-835/TE XRN-1610SN/TE XRN-810SN/TE

CWE ID-CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CVE-2025-36529

Assigner-JPCERT/CC

View Details

Assigner-JPCERT/CC

CVSS Score-8.6||HIGH

EPSS-0.24% / 46.84%

7 Day CHG~0.00%

Published-27 Jun, 2025 | 05:23

Updated-30 Jun, 2025 | 18:47

An OS command injection issue exists in multiple versions of TB-eye network recorders and AHD recorders. If this vulnerability is exploited, an arbitrary OS command may be executed by an attacker who is logging in to the device.

Vendor-TB-eye Ltd.

CWE ID-CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')