CVE-2025-34036

{"id": "CVE-2025-34036", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}], "cvssMetricV40": [{"type": "Secondary", "source": "disclosure@vulncheck.com", "cvssData": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "NOT_DEFINED", "baseScore": 10.0, "Automatable": "NOT_DEFINED", "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "exploitMaturity": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED", "userInteraction": "NONE", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "NONE", "subIntegrityImpact": "HIGH", "vulnIntegrityImpact": "HIGH", "integrityRequirement": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "subAvailabilityImpact": "HIGH", "vulnAvailabilityImpact": "HIGH", "availabilityRequirement": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "subConfidentialityImpact": "HIGH", "vulnConfidentialityImpact": "HIGH", "confidentialityRequirement": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "vulnerabilityResponseEffort": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED"}}]}, "published": "2025-06-24T01:15:24.903", "references": [{"url": "https://vulncheck.com/advisories/shenzhen-tvt-cctv-dvr-command-injection", "tags": ["Third Party Advisory"], "source": "disclosure@vulncheck.com"}, {"url": "https://web.archive.org/web/20160322204109/http://www.kerneronsec.com/2016/02/remote-code-execution-in-cctv-dvrs-of.html", "tags": ["Exploit", "Third Party Advisory"], "source": "disclosure@vulncheck.com"}, {"url": "https://www.exploit-db.com/exploits/39596", "tags": ["Exploit", "Third Party Advisory"], "source": "disclosure@vulncheck.com"}, {"url": "https://web.archive.org/web/20160322204109/http://www.kerneronsec.com/2016/02/remote-code-execution-in-cctv-dvrs-of.html", "tags": ["Exploit", "Third Party Advisory"], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "disclosure@vulncheck.com", "description": [{"lang": "en", "value": "CWE-78"}]}, {"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-78"}]}], "descriptions": [{"lang": "en", "value": "An OS command injection vulnerability exists in white-labeled DVRs manufactured by TVT, affecting a custom HTTP service called \"Cross Web Server\" that listens on TCP ports 81 and 82. The web interface fails to sanitize input in the URI path passed to the language extraction functionality. When the server processes a request to /language/[lang]/index.html, it uses the [lang] input unsafely in a tar extraction command without proper escaping. This allows an unauthenticated remote attacker to inject shell commands and achieve arbitrary command execution as root.\u00a0Exploitation evidence was observed by the Shadowserver Foundation on 2025-08-27 UTC."}, {"lang": "es", "value": "Existe una vulnerabilidad de inyecci\u00f3n de comandos del sistema operativo en los DVR de marca blanca fabricados por TVT, que afecta a un servicio HTTP personalizado llamado \"Cross Web Server\" que escucha en los puertos TCP 81 y 82. La interfaz web no depura la entrada en la ruta URI enviada a la funci\u00f3n de extracci\u00f3n de idioma. Cuando el servidor procesa una solicitud a /language/[lang]/index.html, utiliza la entrada [lang] de forma insegura en un comando de extracci\u00f3n de tar sin el escape adecuado. Esto permite que un atacante remoto no autenticado inyecte comandos de shell y ejecute comandos arbitrarios como root."}], "lastModified": "2025-11-17T22:15:45.647", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:tvt:td-2108ts-cl_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ADDAF6E1-53F7-49AC-A456-E21D951C70DA"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:tvt:td-2108ts-cl:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "3BAE005D-30B5-4C15-BC9C-99200C071E88"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:tvt:td-2108ts-cl-a_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9BB3A090-35D4-46C1-9D7D-39A25C74290C"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:tvt:td-2108ts-cl-a:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "79C91B0B-0274-44FC-8AD3-804EE8A0788C"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:tvt:td-2116ts-cl_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B0AE60F3-013E-4170-9CF1-1E873473A966"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:tvt:td-2116ts-cl:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "48AD0F7E-2569-430D-8DD4-CBD4C2D9747D"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:tvt:td-2104ts-hc_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0FB2C9E5-686F-4A5C-BECA-BE1F6F2F6208"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:tvt:td-2104ts-hc:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "29712812-D665-4761-A344-6C4E197AB8ED"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:tvt:td-2108ts-hc_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "91E3AB32-C9C5-4C16-BBA2-AB6C81B5CA02"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:tvt:td-2108ts-hc:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "AF0CE834-CC63-4AD7-9332-A2047C14CDB0"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:tvt:td-2116ts-hc_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4B740C19-656B-4BDD-A25D-C9DB2E425427"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:tvt:td-2116ts-hc:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C6F4DD54-7481-4B04-B583-46CDF2C2552C"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:tvt:td-2104ts-hp_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3EB0FFFA-B75E-4080-A299-BE841A803723"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:tvt:td-2104ts-hp:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "6CD931E4-139A-4019-89E3-B98BE7DAD7A2"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:tvt:td-2108ts-hp_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DB9EB09A-CAD5-4FCA-AED3-4FF98B01F1B4"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:tvt:td-2108ts-hp:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D19AC196-4BDC-44E9-BE14-418D4BED8A16"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:tvt:td-2116te-hp_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D2E3EC4A-EDD3-48AC-A021-872F9D41F3F1"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:tvt:td-2116te-hp:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "6DD50A1B-E571-43AB-86A0-308A24C4C7E6"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:tvt:td-2704ts-hc_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "494F97B4-3BA8-44A3-A82A-F28964341CCB"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:tvt:td-2704ts-hc:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "1E206D96-DC01-42F2-A3F9-F5F81A548979"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:tvt:td-2708ts-hc_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "25637F4F-35F3-44D0-9AFD-7E9710E52A07"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:tvt:td-2708ts-hc:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "CF900D9D-ED0D-4E5D-A6E7-87A45C7B5099"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:tvt:td-2716te-hc_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FF53CD40-CFCD-4D1D-AF2C-C9AD64C0CAF2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:tvt:td-2716te-hc:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A922BAA8-47C3-43A0-A56F-0C4A13347B09"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:tvt:td-2716te-hc-a_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "75175C42-13D0-436C-AD8E-4946EFE8978B"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:tvt:td-2716te-hc-a:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C8ADADEE-9227-4396-AACA-BF3B3917701C"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:tvt:td-2716tc-hc_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "77389AB7-E330-4A90-98CB-A8456A8AD6AF"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:tvt:td-2716tc-hc:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "621D799E-A233-43F7-809A-CE149CD353F8"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:tvt:td-2732tc-hc_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "76F9AEE5-ECEA-4A33-A8F0-5BD02DFCFE1E"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:tvt:td-2732tc-hc:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "12267ADD-74AC-4E34-8CE8-0A60334C044F"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:tvt:td-2716td-hc_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "100AC39C-01D9-4960-8D3B-229F40E5AF5A"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:tvt:td-2716td-hc:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C28FF747-8318-48E1-A598-BE0296615C4F"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:tvt:td-2732td-hc_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7CBE5F63-F2E2-403B-848A-64E6D6C9314E"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:tvt:td-2732td-hc:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "DCD77A5D-7465-4ED0-8975-F40C6315CC15"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:tvt:td-2704ts-hp_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "774BD618-056E-4560-8F1D-6B894F33BDB8"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:tvt:td-2704ts-hp:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "2D897FF1-CCAE-4300-97CE-59F855791FF9"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:tvt:td-2708ts-hp_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "91D9F589-2E48-41A0-8A57-6A373D595F30"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:tvt:td-2708ts-hp:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "0BB0609F-2919-49CB-B86E-E8C52A18A0C9"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:tvt:td-2708te-hp_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "83D4E081-3971-4A24-894E-23F81F06BA45"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:tvt:td-2708te-hp:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F1E3EF01-2AA4-48A9-810D-F0F4FB983E56"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:tvt:td-2716te-hp_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E29126F9-5059-417B-BE35-35CF938EBC14"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:tvt:td-2716te-hp:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B7D1B773-0A43-4934-A334-A57721D216B5"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:tvt:td-2716te-hp-a_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "837ED64F-2BE1-48A9-9601-A94A264F3225"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:tvt:td-2716te-hp-a:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "4B681661-ADD3-4E90-9D62-5EDFB3E2FA5B"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:tvt:td-2716tc-hp_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0A19ECD6-9599-451B-B38C-2A6E0B80DEB0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:tvt:td-2716tc-hp:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "9A90EC0E-E9FD-48A1-B77F-05D7080FA090"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:tvt:td-2708te-hk_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B71BB732-77DE-468E-A072-501D04DE14B1"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:tvt:td-2708te-hk:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7A405E3D-2F68-440D-A38F-3FAB3D06360F"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:tvt:td-2932td-hp_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D6488F32-43C3-463A-8BE7-28CF6104B7EE"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:tvt:td-2932td-hp:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "80E252DD-57A0-4CE9-8AC8-9184E008F7E7"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:tvt:td-2004ts-cl_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8AF25392-A70F-496D-8C29-33ECE627C769"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:tvt:td-2004ts-cl:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F5F93DAB-6229-40A0-9056-80DEEFD05439"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:tvt:td-2004ts-cl-c_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E5A9EF45-F6F0-4B65-A986-85A9BF3B299F"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:tvt:td-2004ts-cl-c:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "1E7F5829-E633-4CDE-9442-79BEFEB6DDC3"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:tvt:td-2104ts-cl_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "07B0F4D4-4D1B-4CCF-843F-3E3EA345C9D0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:tvt:td-2104ts-cl:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "26307205-124C-4A1D-B2F2-24504760D79C"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:tvt:td-2104ts-cl-a_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0D71D5E5-7CD5-4130-9C56-C884E955585D"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:tvt:td-2104ts-cl-a:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7CF5326B-46FB-4198-B972-386312B55213"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:tvt:td-2008ts-cl_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "00F89A83-DAE0-4442-A721-18C8C2528274"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:tvt:td-2008ts-cl:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E481375F-F9B0-42DE-9FBA-8DF3AE2C80C7"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "disclosure@vulncheck.com"}