CVE-2024-52545
CVSS V2 None
CVSS V3 None
Description
An unauthenticated attacker can perform an out of bounds heap read in the IQ Service (TCP port 9876). This vulnerability has been resolved in firmware version 2.800.0000000.8.R.20241111.
Overview
- CVE ID
- CVE-2024-52545
- Assigner
- rapid7
- Vulnerability Status
- PUBLISHED
- Published Version
- 2024-12-03T17:20:45.858Z
- Last Modified Date
- 2024-12-03T21:02:16.869Z
Weakness Enumerations
References
Reference URL | Reference Tags |
---|---|
https://github.com/sfewer-r7/LorexExploit | exploit |
https://www.rapid7.com/blog/post/2024/12/03/lorex-2k-indoor-wi-fi-security-camera-multiple-vulnerabilities-fixed/ | third-party-advisory |
Sources
Source Name | Source URL |
---|---|
NIST | https://nvd.nist.gov/vuln/detail/CVE-2024-52545 |
MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-52545 |
History
Created | Old Value | New Value | Data Type | Notes |
---|---|---|---|---|
2024-12-04 13:22:43 | Added to TrackCVE |