关键漏洞信息 漏洞标题 AVTech IP Camera, DVR, and NVR Devices Multiple Vulnerabilities 严重性 CRITICAL 发布日期 June 30, 2025 影响设备 AVTech IP Camera AVTech DVR AVTech NVR CVE 编号 CVE-2013-4985, CVE-2017-5173, CVE-2020-9312, CVE-2025-34050, CVE-2025-34051, CVE-2025-34052, CVE-2025-34053, CVE-2025-34054, CVE-2025-34055, CVE-2025-34056, CVE-2025-34065, CVE-2025-34066 漏洞类型 Authentication Bypass, Buffer Overflow, Cleartext Credentials, Cross-Site Request Forgery, OS Command Injection, Path Traversal, Server-Side Request Forgery CVSS 分数 10 CVSS V4 向量 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H 参考链接 Exploitation in the Wild (CVE-2024-33470) Researcher Disclosure Exploit 致谢 Gergely Eberhardt of SEARCH-LAB.hu