TP-Link Network Video Recorder Vulnerability Enables Arbitrary Command Execution
Posted: Sat Jul 26, 2025 1:57 pm
TP-Link has disclosed critical security vulnerabilities affecting two of its VIGI Network Video Recorder models, potentially allowing attackers to execute arbitrary commands on the underlying operating system.
The vulnerabilities, identified as CVE-2025-7723 and CVE-2025-7724, impact the VIGI NVR1104H-4P V1 and VIGI NVR2016H-16MP V2 devices, with both receiving high CVSS scores of 8.5 and 8.7 respectively.
https://gbhackers.com/tp-link-network-v ... erability/
The vulnerabilities, identified as CVE-2025-7723 and CVE-2025-7724, impact the VIGI NVR1104H-4P V1 and VIGI NVR2016H-16MP V2 devices, with both receiving high CVSS scores of 8.5 and 8.7 respectively.
https://gbhackers.com/tp-link-network-v ... erability/