CVE-2025-41016

Q: How severe is CVE-2025-41016?

CVSS scoring is not yet available for CVE-2025-41016. Check NVD for updates.

Q: Is there a patch for CVE-2025-41016?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.

Vulnerability Description

Inadequate access control vulnerability in Davantis DFUSION v6.177.7, which allows unauthorised actors to extract images and videos related to alarm events through access to “/alarms/<ALARM_ID>/<MEDIA>”, where the “MEDIA” parameter can take the value of “snapshot” or “video.mp4”. These media files contain images recorded by security cameras in response to triggered alerts.

Related Weaknesses (CWE)

CWE-862

References

https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-dfus

FAQ

What is CVE-2025-41016?

CVE-2025-41016 is a documented vulnerability. Inadequate access control vulnerability in Davantis DFUSION v6.177.7, which allows unauthorised actors to extract images and videos related to alarm events through access to “/alarms/<ALARM_ID>/<MEDIA...

How severe is CVE-2025-41016?

CVSS scoring is not yet available for CVE-2025-41016. Check NVD for updates.

Is there a patch for CVE-2025-41016?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.