- Description
- A vulnerability was found in TBK DVR-4104 and DVR-4216 up to 20240412 and classified as critical. This issue affects some unknown processing of the file /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___. The manipulation of the argument mdb/mdc leads to os command injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-260573 was assigned to this vulnerability.
- Source
- cna@vuldb.com
- NVD status
- Awaiting Analysis
CVSS 3.1
- Type
- Secondary
- Base score
- 6.3
- Impact score
- 3.4
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
- Severity
- MEDIUM
CVSS 2.0
- Type
- Secondary
- Base score
- 6.5
- Impact score
- 6.4
- Exploitability score
- 8
- Vector string
- AV:N/AC:L/Au:S/C:P/I:P/A:P
- cna@vuldb.com
- CWE-78
- Hype score
- Not currently trending
ハニーポット観測:CVE-2024-3721を悪用した攻撃の観測 #Security - Qiita https://t.co/BwDxEBxvRp
@ohhara_shiojiri
25 Oct 2025
36 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
すごいな ハニーポット観測:CVE-2024-3721を悪用した攻撃の観測 https://t.co/pVv8H46oxp #Qiita 三菱電機 情報技術総合研究所では、製品開発時のセキュリティ対策にフィードバックする目的で、複数種類のハニーポ
@ml_t299
24 Oct 2025
54 Impressions
1 Retweet
0 Likes
0 Bookmarks
0 Replies
0 Quotes
ハニーポット観測:CVE-2024-3721を悪用した攻撃の観測 https://t.co/CexfOe3RLc #Qiita
@yousukezan
24 Oct 2025
3191 Impressions
7 Retweets
46 Likes
20 Bookmarks
0 Replies
0 Quotes
지난 한 달 동안 FortiGuard Labs는 스캐닝 활동이 크게 증가한 것을 확인. 여기에는 두 가지 고위험 취약점인 CVE-2024-3721 과 CVE-2024-12856을 악용하는 새로운 봇넷 캠페인이 포함 https://t.co/YDvrqCXc3S https://t.co/CrX2rHOSMu
@ngnicky
10 Oct 2025
180 Impressions
0 Retweets
3 Likes
0 Bookmarks
0 Replies
0 Quotes
💀 Mirai se caracteriza por tener las siguientes funcionalidades: 📌Aprovechar la vulnerabilidad CVE-2024-3721 para ejecutar comandos de forma remota sin autenticación. 📌Incorporar el dispositivo comprometido a una red de bots bajo control de infraestructura C2. 📌Ejec
@CSIRTFinanciero
12 Aug 2025
61 Impressions
1 Retweet
3 Likes
0 Bookmarks
0 Replies
0 Quotes
#Malware #VulnerabilityReport New Mirai Botnet Variant Targets DVR Systems via CVE-2024-3721 https://t.co/8dqFKQCBTu
@Komodosec
14 Jul 2025
14 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
RondoDox malware exploits CVE-2024-3721 & CVE-2024-12856 to turn TBK DVRs & Four-Faith routers into a stealthy DDoS botnet, hiding C&C traffic by mimicking legitimate streams. 🕷️ #IoT #China #Botnet https://t.co/xHYoGXvNBd
@TweetThreatNews
8 Jul 2025
43 Impressions
1 Retweet
0 Likes
0 Bookmarks
0 Replies
0 Quotes
📌 تستهدف حملة البرمجيات الضارة "RondoDox" ثغرات في مسجلات الفيديو الرقمية TBK و أجهزة توجيه Four-Faith لإطلاق هجمات حجب الخدمة (DDoS). تشمل الثغرات ضعفاً في TBK DVRs وخصائ
@Cybercachear
8 Jul 2025
62 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Variante do Mirai explorando CVE-2024-3721 em DVRs da TBK continua atacando equipamentos desatualizados…
@hashtagsec
8 Jul 2025
41 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
The latest Mirai wave exploits TBK DVR devices with CVE-2024-3721; Kaspersky GReAT experts analyze new attack features and vulnerabilities. #Cybersecurity https://t.co/ckdTwx6ygA
@Synapze_
7 Jul 2025
51 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🧿 RondoDox Unveiled: Breaking Down a New Botnet Threat Targets DVRs/routers via CVE-2024-3721 & CVE-2024-12856 🕵️ Evades detection using gaming/VPN traffic 💥 Disables system tools, launches DDoS Read more: https://t.co/ffVADW1kR9 #Botnet #Infosec https://t.co/tLrBG
@threatsbank
5 Jul 2025
68 Impressions
1 Retweet
0 Likes
0 Bookmarks
0 Replies
0 Quotes
New Mirai botnet targets TBK DVRs by exploiting CVE-2024-3721
@NyseArabia
20 Jun 2025
5 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Threat actors are actively exploiting CVE-2024-3721 in TBK DVRs, creating botnets for DDoS attacks. Over 60k detection events show a widespread campaign involving Condi, Fodcha, Mirai, families. Stay alert! 🚨 #IoT #DDoS #USA https://t.co/OTcHJAnBRn
@TweetThreatNews
19 Jun 2025
51 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🦠 TBK DVRs under attack via CVE-2024-3721 — IoT devices hijacked for DDoS botnets like Mirai & Fodcha. Patch now! #CVE2024_3721 #IoTSecurity #Botnet https://t.co/WBKV6IYZ4c
@threatsbank
19 Jun 2025
54 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🦠 TBK DVRs under attack via CVE-2024-3721 — IoT devices hijacked for DDoS botnets like Mirai & Fodcha. Patch now! #CVE2024_3721 #IoTSecurity #Botnet https://t.co/WBKV6IYreE
@threatsbank
19 Jun 2025
8 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Mirai Botnet Targets Digital Video Recorders in Russia A Mirai-based botnet is massively attacking digital video recorders in different countries using the known vulnerability CVE-2024-3721. Most of the incidents occurred in Russia, China, Egypt, India, Brazil and Turkey.
@Aizendcom
16 Jun 2025
65 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
#threatreport #LowCompleteness Analysis of the last wave of Mirai Botnet attacks on TBK DVR devices with a vulnerability CVE-2024-3721 | 10-06-2025 Source: https://t.co/eObsBT0M9K Key details below ↓ 💀Threats: Mirai, Bashlite, 🏭Industry: Iot 🌐Geo: Egypt, Ukraine, Ru
@rst_cloud
11 Jun 2025
82 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
📌 Mirai-based botnet targets DVRs globally via CVE-2024-3721. Over 50,000 devices at risk. #CyberSecurity #Botnet https://t.co/fXGPOTzAWP https://t.co/atReutqhB9
@CyberHub_blog
10 Jun 2025
37 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
#securelist@kaspersky Новая ботнет-кампания Mirai по захвату DVR-устройств Эксперты GReAT "Лаборатории Касперского" рассказали о новых возможностях ботнета Mirai: в послед
@kmscom3
10 Jun 2025
11 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 Breaking: The notorious Mirai botnet resurfaces, now targeting vulnerable TBK DVRs by exploiting CVE-2024-3721! This new threat highlights the ever-evolving landscape of #CyberSecurity risks. Stay informed & protect your networks from potential #malware exploits.
@WideWatchers
10 Jun 2025
9 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
A new Mirai botnet is targeting TBK DVRs by exploiting CVE-2024-3721. https://t.co/O6vBn32ywd
@BlockesN95299
10 Jun 2025
14 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
New Mirai botnet targets TBK DVRs by exploiting CVE-2024-3721 https://t.co/KVqGo8trDw #microsoftsecurity #secqube
@SecQube
10 Jun 2025
32 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
New #Mirai #botnet targets #TBK #DVRs by #exploiting CVE-2024-3721 https://t.co/Nxgtp90l7P https://t.co/iLhmImLa2Z
@omvapt
10 Jun 2025
51 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
New Mirai botnet infect TBK DVR devices via command injection flaw New variant of Mirai botnet is actively exploiting CVE-2024-3721, a command injection flaw in TBK DVR-4104 and DVR-4216 devices, using a public PoC by researcher "netsecfish." The attack involves sending crafted
@dCypherIO
9 Jun 2025
58 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
A new Mirai malware variant exploits the CVE-2024-3721 command injection flaw in TBK DVRs, enabling hijacking for DDoS attacks and malicious traffic proxying, with significant infections detected predominantly in China, India, and other nations. #Security https://t.co/3exdq5V8OG
@Strivehawk
9 Jun 2025
57 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
‼️ طريق استغلال ثغرة CVE-2024-3721! باحثين من شركة Kaspersky اكتشفوا نسخة جديدة من شبكة Mirai botnet المشهورة، واللي بقت دلوقتي بتستهدف أجهزة تسجيل الفيديو الرقمي TBK DVR-41
@hiddenlockT
9 Jun 2025
162 Impressions
1 Retweet
0 Likes
0 Bookmarks
0 Replies
0 Quotes
We've observed yet another variant of the Mirai botnet targeting DVR (digital video recorder) devices. It uses CVE-2024-3721 to deploy a bot on the devices. More here 👉 https://t.co/RfGZRjy5Cv https://t.co/dQQutDSfFN
@e_kaspersky
9 Jun 2025
1161 Impressions
1 Retweet
7 Likes
0 Bookmarks
0 Replies
0 Quotes
Exploitation of CVE-2024-3721 in its Linux honeypots from a new Mirai botnet variant using netsecfish's PoC #cyber #CyberSecurity #cybercrime #CyberAttack #cyberdefense https://t.co/xOdmdOxlTV
@docangelmtz1
9 Jun 2025
23 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
New Mirai botnet targets TBK DVRs by exploiting CVE-2024-3721 https://t.co/wqAJ0pcY9l
@Dinosn
9 Jun 2025
2541 Impressions
8 Retweets
23 Likes
7 Bookmarks
0 Replies
0 Quotes
Neue Mirai-Welle attackiert TBK-DVRs: Botnetz nutzt CVE-2024-3721 zur Infektion verwundbarer Überwachungssysteme https://t.co/VgvmsD5wFf
@KolaricDav5471
9 Jun 2025
23 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
The Mirai botnet is now exploiting CVE-2024-3721 in TBK DVRs, seizing control of devices for DDoS attacks. Thousands remain vulnerable. #MiraiBotnet #DDoSAttack #IoTsecurity #Cybersecurity #DVRVulnerability https://t.co/MM54mkZ8Bq
@the_yellow_fall
9 Jun 2025
352 Impressions
2 Retweets
4 Likes
0 Bookmarks
0 Replies
0 Quotes
Variante Mirai sfrutta CVE-2024-3721 per infettare DVR TBK con comandi remoti Botnet, ARM32, DVR, exploit, IoT, malware, mirai, videosorveglianza IP, vulnerabilità https://t.co/L8zNWGaRUq https://t.co/9wp5iQ85mI
@matricedigitale
9 Jun 2025
45 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
【MiraiボットネットがCVE-2024-3721で感染拡大】PoC公開済みのコマンドインジェクションの脆弱性を利用してTBK製DVR-4104およびDVR-4216をボットネットに追加。Kasperskyのスキャンによると約5万台のデバイスがインタ
@MachinaRecord
9 Jun 2025
70 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
🚨Alert🚨CVE-2024-3721: A new Mirai botnet variant is exploiting CVE-2024-3721 to infect vulnerable DVRs. 🧐Deep Dive :https://t.co/GEmI0dV8HN 📊97K+Services are found on the https://t.co/ysWb28Crld yearly. 🔗Hunter Link:https://t.co/udH0kUsuBU 👇Query HUNTER : https:
@HunterMapping
9 Jun 2025
4551 Impressions
27 Retweets
80 Likes
38 Bookmarks
0 Replies
1 Quote
🚨Alert🚨CVE-2024-3721: A new Mirai botnet variant is exploiting CVE-2024-3721 to infect vulnerable DVRs. 🧐Deep Dive :https://t.co/GEmI0dV8HN 📊97K+Services are found on the https://t.co/ysWb28Crld yearly. 🔗Hunter Link:https://t.co/udH0kUsuBU 👇Query HUNTER : https:
@HunterMapping
9 Jun 2025
327 Impressions
1 Retweet
8 Likes
5 Bookmarks
0 Replies
0 Quotes
新型Miraiボットネット、コマンドインジェクション脆弱性を利用してTBK DVRデバイスに感染(CVE-2024-3721) https://t.co/y8byxBy65a #Security #セキュリティ #ニュース
@SecureShield_
9 Jun 2025
48 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 New Mirai Botnet Exploits TBK DVR Command Injection Flaw - A new Mirai botnet variant is actively exploiting CVE-2024-3721, a command injection vulnerability in TBK DVR-4104 and DVR-4216 devices. - The flaw allows attackers to execute shell commands via a crafted POST h
@Ransom_DB
8 Jun 2025
249 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨New Mirai botnet variant exploits CVE-2024-3721 in TBK DVRs. Fast ARM32 attacks, RC4 encryption, anti-VM, and no recon. Over 50K devices exposed! No persistence, but reinfections are fast. #Mirai #Darkweb #Deepweb Breaking news from the world & Darkweb: https://t.co/ZF7G3
@godeepweb
8 Jun 2025
83 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
A new Mirai variant exploits CVE-2024-3721 to infect TBK DVRs via command injection, enabling DDoS attacks & malicious traffic. Around 50,000 devices remain vulnerable worldwide, impacting several countries. 🚨 #Mirai #CVE-2024-3721 #Japan https://t.co/ZJp98xfLwq
@TweetThreatNews
8 Jun 2025
195 Impressions
0 Retweets
2 Likes
0 Bookmarks
0 Replies
0 Quotes
Kritieke kwetsbaarheid ontdekt in tbk dvr systemen: actie vereist https://t.co/gh3brvil1W #CVE-2024-3721 #TBK DVR kwetsbaarheid #os command injectie #kritieke beveiligingslek #TBK DVR-4104 DVR-4216 update #Trending #Tech #Nieuws
@TrendingNewsBot
8 Jun 2025
47 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Kritieke beveiligingslek in tbk dvr-systemen: cve-2024-3721 blootgelegd https://t.co/BexgbiSkx2 #CVE-2024-3721 #TBK DVR kwetsbaarheid #OS commando injectie #Cybersecurity bedreiging #Kritieke beveiligingslek #Trending #Tech #Nieuws
@TrendingNewsBot
8 Jun 2025
47 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Kritieke beveiligingslek in tbk dvr systemen stelt gebruikers bloot aan risico's https://t.co/5wNMC62Ayi #CVE-2024-3721 #TBK DVR-4104 #TBK DVR-4216 #OS Command Injectie #Beveiligingslek #Trending #Tech #Nieuws
@TrendingNewsBot
8 Jun 2025
38 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Nieuwe mirai botnet variant infecteert tbk dvr-apparaten via command injection https://t.co/3qmQzFaQj4 #Mirai botnet #TBK DVR #command injection #CVE-2024-3721 #IoT beveiliging #Trending #Tech #Nieuws
@TrendingNewsBot
8 Jun 2025
44 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
New Mirai botnet variant exploits TBK DVR devices via CVE-2024-3721, infecting 50K+ devices globally. Check IoCs and patch now to avoid DDoS attacks. Details: https://t.co/wQqmTlcWCB
@RedTeamNewsBlog
8 Jun 2025
33 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 Mirai Botnet Strikes Again: TBK DVR Devices Under Siege via #CVE-2024-3721 Exploit https://t.co/5vmslXfrPv
@UndercodeNews
8 Jun 2025
66 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
New Mirai Botnet Variant Targets DVR Systems via CVE-2024-3721 https://t.co/uYlYrMymbu
@the_yellow_fall
8 Jun 2025
515 Impressions
2 Retweets
7 Likes
3 Bookmarks
0 Replies
0 Quotes
カスペルスキーの研究者は、CVE-2024-3721の脆弱性を悪用し、Miraiボットネットの改良版をDVR型監視システムに感染させる新たな攻撃を発見した。攻撃は、Linuxコマンドを含むPOSTリクエストを脆弱なTBK DVRのエンド
@yousukezan
8 Jun 2025
2691 Impressions
1 Retweet
16 Likes
3 Bookmarks
0 Replies
0 Quotes
Analysis of the latest Mirai wave exploiting TBK DVR devices with CVE-2024-3721 https://t.co/oeivC5yXRJ
@taku888infinity
8 Jun 2025
755 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
#threatreport #MediumCompleteness Analysis of the latest Mirai wave exploiting TBK DVR devices with CVE-2024-3721 | 06-06-2025 Source: https://t.co/V82AExKZqc Key details below ↓ 💀Threats: Mirai, Bashlite, 🎯Victims: Dvr devices 🏭Industry: Iot 🌐Geo: Egypt, Russia
@rst_cloud
6 Jun 2025
61 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
New Mirai variant exploits CVE-2024-3721 to target TBK DVR devices, deploying bots via malicious POST requests and ARM32 binaries. It features RC4 encryption & anti-VM tech, highlighting ongoing IoT risks. #Mirai #Vulnerability #Japan https://t.co/uDQeJhpUs1
@TweetThreatNews
6 Jun 2025
76 Impressions
0 Retweets
0 Likes
1 Bookmark
0 Replies
0 Quotes