Detections
Analytics
CVE-2024-3721
medium
Description
A vulnerability was found in TBK DVR-4104 and DVR-4216 up to 20240412 and classified as critical. This issue affects some unknown processing of the file /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___. The manipulation of the argument mdb/mdc leads to os command injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-260573 was assigned to this vulnerability.
References
https://cydome.io/cydome-identifies-broadside-a-new-mirai-botnet-variant-targeting-maritime-iot/
https://www.theregister.com/2025/11/26/miraibased_botnet_shadowv2/
https://www.infosecurity-magazine.com/news/php-servers-and-iot-devices-cyber/
https://thehackernews.com/2025/10/experts-reports-sharp-increase-in.html
https://www.securityweek.com/rondodox-botnet-takes-exploit-shotgun-approach/
https://thehackernews.com/2025/07/rondodox-botnet-exploits-flaws-in-tbk.html
https://securityaffairs.com/178830/malware/mirai-botnets-exploit-wazuh-rce-akamai-warned.html
https://www.securityweek.com/mirai-botnets-exploiting-wazuh-security-platform-vulnerability/
https://thehackernews.com/2025/06/botnet-wazuh-server-vulnerability.html
https://securelist.com/mirai-botnet-variant-targets-dvr-devices-with-cve-2024-3721/116742/