Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

CVE
CVEadded 2025/02/10 10:44 a.m.86 views

CVE-2025-1099

CVE-2025-1099 affects the TP-Link/Tapo C500 Wi‑Fi camera. The vulnerability stems from a hard-coded RSA private key embedded in the device firmware, enabling a physically proximate attacker to obtain cryptographic private keys and perform impersonation, data decryption, and man-in-the-middle atta...

7CVSS6AI score0.00247EPSS
Exploits0References1
Rapid7 Blog
Rapid7 Blogadded 2024/12/03 8:0 p.m.41 views

Lorex 2K Indoor Wi-Fi Security Camera: Multiple Vulnerabilities (FIXED)

The Lorex 2K Indoor Wi-Fi Security Camera is a consumer security device that provides cloud-based video camera surveillance capabilities. This device was a target at the 2024 Pwn2Own IoT competition. Rapid7 developed an unauthenticated remote code execution RCE exploit chain as an entry for the...

9.8CVSS8.4AI score0.01111EPSS
Exploits1
Cvelist
Cvelistadded 2024/12/03 5:29 p.m.30 views

CVE-2024-52548 Lorex 2K Indoor Wi-Fi Security Camera - Code signing bypass

An attacker who can execute arbitrary Operating Systems commands, can bypass code signing enforcements in the kernel, and execute arbitrary native code. This vulnerability has been resolved in firmware version 2.800.0000000.8.R.20241111...

6.7CVSS0.00163EPSS
Exploits1References2
Cvelist
Cvelistadded 2024/12/03 5:23 p.m.28 views

CVE-2024-52546 Lorex 2K Indoor Wi-Fi Security Camera - Null pointer dereference

An unauthenticated attacker can perform a null pointer dereference in the DHIP Service UDP port 37810. This vulnerability has been resolved in firmware version 2.800.0000000.8.R.20241111...

5.3CVSS0.00769EPSS
Exploits1References2
Cvelist
Cvelistadded 2024/12/03 5:20 p.m.28 views

CVE-2024-52545 Lorex 2K Indoor Wi-Fi Security Camera - Out of bounds heap read

An unauthenticated attacker can perform an out of bounds heap read in the IQ Service TCP port 9876. This vulnerability has been resolved in firmware version 2.800.0000000.8.R.20241111...

6.5CVSS0.00719EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2024/12/03 5:20 p.m.11 views

CVE-2024-52545 Lorex 2K Indoor Wi-Fi Security Camera - Out of bounds heap read

An unauthenticated attacker can perform an out of bounds heap read in the IQ Service TCP port 9876. This vulnerability has been resolved in firmware version 2.800.0000000.8.R.20241111...

6.5CVSS7.1AI score0.00719EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2024/12/03 5:18 p.m.21 views

CVE-2024-52544 Lorex 2K Indoor Wi-Fi Security Camera - Stack buffer overflow

An unauthenticated attacker can trigger a stack based buffer overflow in the DP Service TCP port 3500. This vulnerability has been resolved in firmware version 2.800.0000000.8.R.20241111...

9.8CVSS7.6AI score0.01111EPSS
Exploits1References2
Rows per page
Query Builder