CVE-2025-63408

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Local Agent DVR versions through 6.6.1.0

Description Local Agent DVR is affected by a directory traversal issue. An unauthenticated local attacker can exploit this to access sensitive information, conduct a server-side forgery request (SSRF), or execute operating system commands. The issue allows an attacker to traverse directories and potentially access files or execute code on the system.

Recommendations Update Local Agent DVR to a version later than 6.6.1.0.

Exploit

Fix

RCE

Path traversal

SSRF

OS Command Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-22CWE-918CWE-78

Related Identifiers

CVE-2025-63408

Affected Products

Local Agent Dvr

CVE-2025-63408

Weakness Enumeration

Related Identifiers

Affected Products

References · 7