Vulnerability Database

314,615

Total vulnerabilities in the database

CVE-2019-25240

Rifatron 5brid DVR contains an unauthenticated vulnerability in the animate.cgi script that allows unauthorized access to live video streams. Attackers can exploit the Mobile Web Viewer module by specifying channel numbers to retrieve sequential video snapshots without authentication.

Published: Dec 24, 2025
Updated: Dec 25, 2025
CVE: CVE-2019-25240
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9.8
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWEs:

CWE-306

Affected Software
References

No affected software listed.

http://www.rifatron.com
https://www.exploit-db.com/exploits/47368
https://www.zeroscience.mk/en/vulnerabilities/ZSL-2019-5532.php

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo