CVE-2024-52547

Summary

An authenticated attacker can trigger a stack based buffer overflow in the DHIP Service (TCP port 80). This vulnerability has been resolved in firmware version 2.800.0000000.8.R.20241111.

Affected Software

VendorProductVersion RangeStatus
Lorex2K Indoor Wi-Fi Security Camera0 < 2.800.0000000.8.R.20241111affected

Weaknesses

  • CWE-121: CWE-121: Stack-based Buffer Overflow

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: no
    • Technical Impact: total

References