CVE-2018-9995

TBK DVR4104 and DVR4216 devices, as well as Novo, CeNova, QSee, Pulnix, XVR 5 in 1, Securus, Night OWL, DVR Login, HVR Login, and MDVR Login, which...

Basic Information

CVE State: PUBLISHED
Reserved Date: April 10, 2018
Published Date: April 10, 2018
Last Updated: August 05, 2024
Vendor: n/a
Product: n/a
Description: TBK DVR4104 and DVR4216 devices, as well as Novo, CeNova, QSee, Pulnix, XVR 5 in 1, Securus, Night OWL, DVR Login, HVR Login, and MDVR Login, which run re-branded versions of the original TBK DVR4104 and DVR4216 series, allow remote attackers to bypass authentication via a "Cookie: uid=admin" header, as demonstrated by a device.rsp?opt=user&cmd=list request that provides credentials within JSON data in a response.

CVSS Scores

EPSS Score

Score: 94.14% (Percentile: 99.90%) as of 2025-04-29

Exploit Status

Exploited in the Wild: Yes (added 2025-04-23 00:00:00 UTC) Source

References

https://www.bleepingcomputer.com/news/security/new-hacking-tool-lets-users-access-a-bunch-of-dvrs-and-their-video-feeds/ https://www.exploit-db.com/exploits/44577/ http://misteralfa-hack.blogspot.cl/2018/04/tbk-vision-dvr-login-bypass.html http://misteralfa-hack.blogspot.cl/2018/04/update-dvr-login-bypass-cve-2018-9995.html

Known Exploited Vulnerability Information

Source	Added Date
The Shadowserver (via CIRCL)	2025-04-28 00:00:00 UTC

Scanner Integrations

Scanner	URL	Date Detected
Nuclei	https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2018/CVE-2018-9995.yaml	2025-04-26 00:00:00 UTC

Potential Proof of Concepts

Warning: These PoCs have not been tested and could contain malware. Use at your own risk.

batmoshka55/CVE-2018-9995_dvr_credentials

Type: github • Created: 2024-05-09 09:03:42 UTC • Stars: 0

arminarab1999/CVE-2018-9995

Type: github • Created: 2024-02-09 12:16:26 UTC • Stars: 0

Pab450/CVE-2018-9995

Type: github • Created: 2023-09-24 17:00:37 UTC • Stars: 4

CVE-2018-9995 Exploit Tool for Python3

K3ysTr0K3R/CVE-2018-9995-EXPLOIT

Type: github • Created: 2023-08-18 19:42:17 UTC • Stars: 7

A PoC exploit for CVE-2018-9995 - DVR Authentication Bypass

LeQuocKhanh2K/Tool_Exploit_Password_Camera_CVE-2018-9995

Type: github • Created: 2022-02-18 03:17:31 UTC • Stars: 0

kienquoc102/CVE-2018-9995-2

Type: github • Created: 2021-06-07 05:57:43 UTC • Stars: 4

Saeed22487/CVE-2018-9995

Type: github • Created: 2021-03-30 14:27:54 UTC • Stars: 1

CVE-2018-9995 هک دوربین مداربسته با آسیب پذیری

b510/CVE-2018-9995-POC

Type: github • Created: 2019-12-16 12:05:41 UTC • Stars: 1

CVE-2018-9995 POC

likaifeng0/CVE-2018-9995_dvr_credentials-dev_tool

Type: github • Created: 2019-09-05 14:45:16 UTC • Stars: 0

webcam bug (python)

MrAli-Code/CVE-2018-9995_dvr_credentials

Type: github • Created: 2019-06-16 11:18:00 UTC • Stars: 1

ABIZCHI/CVE-2018-9995_dvr_credentials

Type: github • Created: 2019-05-28 01:05:16 UTC • Stars: 0

TateYdq/CVE-2018-9995-ModifiedByGwolfs

Type: github • Created: 2019-04-20 08:28:47 UTC • Stars: 0

codeholic2k18/CVE-2018-9995

Type: github • Created: 2019-01-28 00:16:48 UTC • Stars: 1

DVR username password recovery.

gwolfs/CVE-2018-9995-ModifiedByGwolfs

Type: github • Created: 2018-05-11 07:05:37 UTC • Stars: 2

Huangkey/CVE-2018-9995_check

Type: github • Created: 2018-05-09 00:43:24 UTC • Stars: 2

DVR系列摄像头批量检测

zzh217/CVE-2018-9995_Batch_scanning_exp

Type: github • Created: 2018-05-08 12:07:26 UTC • Stars: 4

CVE-2018-9995_Batch_scanning_exp

ezelf/CVE-2018-9995_dvr_credentials

Type: github • Created: 2018-04-29 20:00:06 UTC • Stars: 536

(CVE-2018-9995) Get DVR Credentials