Volerion logoVolerion
Volerion logoVolerion

TB-eye Network and AHD Recorders OS Command Injection Vulnerability

Vulnerability

A command injection vulnerability has been identified in TB-eye network recorders and AHD recorders, affecting several firmware versions. This vulnerability allows an attacker who has logged into the device to execute arbitrary operating system commands.

Impact

Exploitation of this vulnerability allows for arbitrary OS command execution on the affected device.

Remediation

Users are advised to update the firmware to the latest version available. For more information, refer to the TB-eye official website. Additionally, it is recommended to change the administrator password to a strong, hard-to-guess one.

Added: Sep 1, 2025, 7:22 PM
Updated: Sep 1, 2025, 7:22 PM

Vulnerability Rating

Custom Algorithm
spread
0.0
impact
7.5
exploitability
4.8
remediation
0.0
relevance
0.2
threat
0.0
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.