Lucene search
K

76 matches found

EUVD
EUVD
added yesterday3 views

EUVD-2026-43542

Lorex 2K Indoor Wi-Fi Security Camera Device Management Server Improper Certificate Validation Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Lorex 2K Indoor Wi-Fi Security Cameras. User interaction is not required to...

7.5CVSS6.9AI score0.00096EPSS
Exploits0References2
EUVD
EUVD
added yesterday4 views

EUVD-2026-43546

Lorex 2K Indoor Wi-Fi Security Camera CDeviceOperator Format String Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Lorex 2K Indoor Wi-Fi Security Cameras. Authentication is not required to exploit th...

7.5CVSS7.3AI score0.0026EPSS
Exploits0References2
NVD
NVD
added 2 days ago4 views

CVE-2026-15680

Lorex 2K Indoor Wi-Fi Security Camera CDeviceOperator Format String Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Lorex 2K Indoor Wi-Fi Security Cameras. Authentication is not required to exploit th...

7.5CVSS0.0026EPSS
Exploits0References1
NVD
NVD
added 2 days ago5 views

CVE-2026-15683

Lorex 2K Indoor Wi-Fi Security Camera Device Management Server Improper Certificate Validation Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Lorex 2K Indoor Wi-Fi Security Cameras. User interaction is not required to...

7.5CVSS0.00096EPSS
Exploits0References1
CVE
CVE
added 2 days ago6 views

CVE-2026-15680

CVE-2026-15680 affects Lorex 2K Indoor Wi‑Fi Security Camera. The vulnerability is in the sonia binary’s JSON request parsing, where lack of validation of a user‑supplied string used as a format specifier can allow a network‑adjacent attacker to execute arbitrary code with root privileges. Authen...

7.5CVSS7.3AI score0.0026EPSS
Exploits0References1
Cvelist
Cvelist
added 2 days ago30 views

CVE-2026-15680 Lorex 2K Indoor Wi-Fi Security Camera CDeviceOperator Format String Remote Code Execution Vulnerability

Lorex 2K Indoor Wi-Fi Security Camera CDeviceOperator Format String Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Lorex 2K Indoor Wi-Fi Security Cameras. Authentication is not required to exploit th...

7.5CVSS0.0026EPSS
Exploits0References1
Cvelist
Cvelist
added 2 days ago29 views

CVE-2026-15683 Lorex 2K Indoor Wi-Fi Security Camera Device Management Server Improper Certificate Validation Vulnerability

Lorex 2K Indoor Wi-Fi Security Camera Device Management Server Improper Certificate Validation Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Lorex 2K Indoor Wi-Fi Security Cameras. User interaction is not required to...

7.5CVSS0.00096EPSS
Exploits0References1
CVE
CVE
added 2 days ago9 views

CVE-2026-15683

Affected product/area: Lorex 2K Indoor Wi‑Fi Security Camera – Device Management Server. Vulnerability: Improper certificate validation in the device management functionality. The flaw stems from lack of proper validation of the server’s certificate, enabling network‑adjacent attackers to execute...

7.5CVSS6.9AI score0.00096EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2012-6304

Malware in sbrugna...

9.8CVSS9AI score0.02609EPSS
Exploits2References4
Zero Day Initiative
Zero Day Initiative
added 2025/07/30 12:0 a.m.5 views

(Pwn2Own) Lorex 2K Indoor Wi-Fi Security Camera Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Lorex 2K Indoor Wi-Fi Security Cameras. Authentication is not required to exploit this vulnerability. The specific flaw exists within the sonia module. The issue results from the lack of...

8.8CVSS6.9AI score
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2025/07/30 12:0 a.m.15 views

(Pwn2Own) Lorex 2K Indoor Wi-Fi Security Camera Improper Validation of Array Index Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Lorex 2K Indoor Wi-Fi Security Cameras. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of requests sent to TCP port 9876. The...

7.5CVSS6.5AI score
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2025/07/30 12:0 a.m.4 views

(Pwn2Own) Lorex 2K Indoor Wi-Fi Security Camera Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Lorex 2K Indoor Wi-Fi Security Cameras. Authentication is not required to exploit this vulnerability. The specific flaw exists within the sonia module. The issue results from the lack of...

8.8CVSS9.5AI score0.01111EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2025/07/30 12:0 a.m.14 views

PT-2025-31439 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: Lorex 2K Indoor Wi-Fi Security Camera affected versions not specified Description: The Lorex 2K Indoor Wi-Fi Security Camera is susceptible to a stack-based buffer overflow, potentially leading to remote code execution. This issue was...

7.3AI score
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/07/30 12:0 a.m.12 views

PT-2025-31445 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: Lorex 2K Indoor Wi-Fi Security Camera affected versions not specified Description: The Lorex 2K Indoor Wi-Fi Security Camera contains an improper validation of array index flaw that can lead to remote code execution. The issue was discovered...

7.1AI score
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 10:44 a.m.5 views

CVE-2024-48799

An issue in LOREX TECHNOLOGY INC com.lorexcorp.lorexping 1.4.22 allows a remote attacker to obtain sensitive information via the firmware update process...

7.5CVSS6.6AI score0.00512EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 5:4 a.m.8 views

CVE-2012-6451

Lorex LNC116 and LNC104 IP Cameras have a Remote Authentication Bypass Vulnerability...

9.8CVSS7AI score0.02609EPSS
Exploits2References1
BDU FSTEC
BDU FSTEC
added 2024/12/12 12:0 a.m.7 views

The vulnerability of the DHIP microprogramming-based IP camera from Lorex 2K Indoor Wi-Fi Security Camera allows a intruder to escalate their privileges to root level and gain full access to the device.

The vulnerability of the DHIP microprogramming-based IP camera from Lorex 2K Indoor Wi-Fi Security Camera lies in the manipulation of the zero pointer. Exploiting this vulnerability allows an attacker to escalate their privileges to root and gain full access to the device through a connection usi...

5.3CVSS5.4AI score0.00769EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/12/12 12:0 a.m.9 views

The vulnerability of the IQ microprogramming software-based Lorex 2K Indoor Wi-Fi Security Camera allows a intruder to escalate their privileges to root level and gain full access to the device.

The vulnerability of the IQ microprogrammed IP camera system from Lorex 2K Indoor Wi-Fi Security Camera lies in the fact that the operation data is stored outside of the buffer in memory. Exploiting this vulnerability allows a remote attacker to elevate their privileges to root and gain full acce...

6.5CVSS5.8AI score0.00719EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/12/11 12:0 a.m.8 views

The vulnerability of the DP microprogramming software-based IP camera from Lorex 2K Indoor Wi-Fi Security Camera allows a intruder to escalate their privileges to root level and gain full access to the device.

The vulnerability of the DP microprogramming-based IP camera from Lorex 2K Indoor Wi-Fi Security Camera lies in the fact that the operation data is transmitted outside the buffer in memory. Exploiting this vulnerability allows an attacker to elevate their privileges to root and gain full access t...

10CVSS8.2AI score0.01111EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/12/11 12:0 a.m.9 views

The vulnerability of the DHIP microprogrammed IP camera software from Lorex 2K Indoor Wi-Fi Security Camera allows a intruder to execute arbitrary code.

The vulnerability of the DHIP microprogrammed IP camera from Lorex 2K Indoor Wi-Fi Security Camera lies in the fact that the operation data is transmitted outside the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code by connecting via the TCP...

9CVSS6.3AI score0.00699EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder