Back

Stack-Based Buffer Overflow Leading To RCE In Victure Camera

Publication date: August 30th, 2021

CVE ID:

CVE-2020-15744

CVSS scrore:

9.6 - CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Affected vendors:

Victure

Affected products:

PC420

Vulnerability details:

Stack-based Buffer Overflow vulnerability in the ONVIF server component of Victure PC420 smart camera allows an attacker to execute remote code on the target device. This issue affects: Victure PC420 firmware version 1.2.2 and prior versions.

Credit:

Bitdefender Labs

Linked KB article:

https://www.bitdefender.com/blog/labs/cracking-the-victure-pc420-camera