VDB

CVE-2025-34129

CVE-2025-34129 PUBLISHED CVSS 8.699999809265137 HIGH

A command injection vulnerability exists in LILIN Digital Video Recorder (DVR) devices prior to firmware version 2.0b60_20200207 due to insufficient sanitization of the FTP and NTP Server fields in the service configuration. An attacker with access to the configuration interface can upload a malicious XML file with injected shell commands in these fields. Upon subsequent configuration syncs, these commands are executed with elevated privileges. This vulnerability was exploited in the wild by the Moobot botnets.

EPSS 1.07% · 78.1th percentile

Risk Scores

CVSS 4.0
8.699999809265137
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
EPSS Score
1.07%
78.1th percentile

Affected Products

VendorProductVersions
tvtdvr_firmware0
Merit LILINDVR Firmware*

Exploit Intelligence

…and 33 more exploits

Timeline

  • Mar 20, 2020 VulnCheck KEV Exploitation
  • Jul 16, 2025 VulnCheck KEV Exploitation
  • Jul 16, 2025 CVE Published
  • Jul 16, 2025 PoC Published
  • Jul 16, 2025 PoC Published
  • Jul 17, 2025 EPSS Score
  • Jul 17, 2025 PoC Published
  • Jul 26, 2025 EPSS Score
  • Aug 4, 2025 EPSS Score
  • Aug 14, 2025 EPSS Score
  • Aug 23, 2025 EPSS Score
  • Sep 1, 2025 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›