CVE-2018-9995 Scanner

The TBK DVR4104 and DVR4216 devices are popular surveillance devices used for monitoring, recording, and managing video feeds in various settings like offices, homes, schools, and warehouses. However, these devices have been found to be vulnerable to a severe security flaw, CVE-2018-9995, which can allow remote attackers to bypass authentication.

The CVE-2018-9995 vulnerability is caused by a "Cookie: uid=admin" header that allows attackers to bypass authentication via a device.rsp?opt=user&cmd=list request. This request provides credentials within JSON data in a response, thereby allowing attackers to gain access to sensitive data.

When exploited, this vulnerability can lead to dire consequences like unauthorized access to video feeds, loss and theft of sensitive data, device hijacking, and compromised security systems. Attackers can easily take over the device remotely and use it for various malicious activities like spying, data theft, and DDoS attacks.

At s4e.io, we understand the importance of staying up to date with the latest security vulnerabilities and threats that can affect your digital assets. With our professional platform, users can quickly and easily learn about vulnerabilities in their digital assets and take appropriate action to protect them. Don't wait until it's too late - sign up for s4e.io today.

REFERENCES

• http://misteralfa-hack.blogspot.cl/2018/04/tbk-vision-dvr-login-bypass.html
• http://misteralfa-hack.blogspot.cl/2018/04/update-dvr-login-bypass-cve-2018-9995.html
• https://www.bleepingcomputer.com/news/security/new-hacking-tool-lets-users-access-a-bunch-of-dvrs-and-their-video-feeds/
• https://www.exploit-db.com/exploits/44577/