Exploited
high
8.8
CWE
119 787 121
Advisory Published
Updated

CVE-2020-5735: Amcrest Cameras and NVR Stack-based Buffer Overflow Vulnerability

First published: Wed Apr 08 2020(Updated: )

Amcrest cameras and NVR are vulnerable to a stack-based buffer overflow over port 37777. An authenticated remote attacker can abuse this issue to crash the device and possibly execute arbitrary code.

Credit: vulnreport@tenable.com vulnreport@tenable.com

Affected SoftwareAffected VersionHow to fix
Amcrest Cameras and Network Video Recorder (NVR)
All of
Amcrest 1080-lite 8ch Firmware
Amcrest 1080-lite 8ch Firmware
All of
Amcrest Amdv10814-h5 Firmware
Amcrest Amdv10814-h5 Firmware
All of
Amcrest IPM-721<v2.420.ac00.18.r.20200217
Amcrest Ipm-721 Firmware
All of
Amcrest IP2M-841B Firmware<v2.420.ac00.18.r.20200217
Amcrest IP2M-841W
All of
Amcrest IP2M-841<v2.800.0000000.6.r.200314
Amcrest IP2M-841-V3 Firmware
All of
Amcrest IP2M-853EW<v2.623.00ac004.0.r.200316
Amcrest IP2M-853EW Firmware
All of
Amcrest IP2M-858W<v2.623.00ac004.0.r.200316
Amcrest Ip2m-858w Firmware
All of
Amcrest Ip2m-866w Firmware<v2.623.00ac004.0.r.200316
Amcrest IP2M-866W
All of
Amcrest IP2M-866EW<v2.623.00ac004.0.r.200316
Amcrest Ip2m-866ew Firmware
All of
Amcrest Ip4m-1053ew Firmware<v2.623.00ac004.0.r.200316
Amcrest Ip4m-1053ew Firmware
All of
Amcrest IP8M-2454EW<v2.622.00ac000.0.r.200320
Amcrest IP8M-2454EW
All of
Amcrest IP8M-2493EB Firmware<v2.622.00ac000.0.r.200320
Amcrest IP8M-2493EB
All of
Amcrest Ip8m-2496eb Firmware<v2.622.00ac000.0.r.200320
Amcrest IP8M-2496EB
All of
Amcrest Ip8m-2597e Firmware<v2.800.00ac000.0.r.200330
Amcrest IP8M-2597E
All of
Amcrest IP8M-MB2546EW<v2.622.00ac000.0.r.200320
Amcrest IP8M-MB2546EW
All of
Amcrest Ip8m-mt2544ew<v2.622.00ac000.0.r.200320
Amcrest Ip8m-mt2544ew Firmware
All of
Amcrest IP8M-T2499EW<v2.622.00ac000.0.r.200320
Amcrest Ip8m-t2499ew Firmware
All of
Amcrest IPC-HX1X3X<v2.420.ac00.18.r.20200217
Amcrest Ipm-hx1 Firmware
Amcrest 1080-lite 8ch Firmware
Amcrest 1080-lite 8ch Firmware
Amcrest Amdv10814-h5 Firmware
Amcrest Amdv10814-h5 Firmware
Amcrest IPM-721<v2.420.ac00.18.r.20200217
Amcrest Ipm-721 Firmware
Amcrest IP2M-841B Firmware<v2.420.ac00.18.r.20200217
Amcrest IP2M-841W
Amcrest IP2M-841<v2.800.0000000.6.r.200314
Amcrest IP2M-841-V3 Firmware
Amcrest IP2M-853EW<v2.623.00ac004.0.r.200316
Amcrest IP2M-853EW Firmware
Amcrest IP2M-858W<v2.623.00ac004.0.r.200316
Amcrest Ip2m-858w Firmware
Amcrest Ip2m-866w Firmware<v2.623.00ac004.0.r.200316
Amcrest IP2M-866W
Amcrest IP2M-866EW<v2.623.00ac004.0.r.200316
Amcrest Ip2m-866ew Firmware
Amcrest Ip4m-1053ew Firmware<v2.623.00ac004.0.r.200316
Amcrest Ip4m-1053ew Firmware
Amcrest IP8M-2454EW<v2.622.00ac000.0.r.200320
Amcrest IP8M-2454EW
Amcrest IP8M-2493EB Firmware<v2.622.00ac000.0.r.200320
Amcrest IP8M-2493EB
Amcrest Ip8m-2496eb Firmware<v2.622.00ac000.0.r.200320
Amcrest IP8M-2496EB
Amcrest Ip8m-2597e Firmware<v2.800.00ac000.0.r.200330
Amcrest IP8M-2597E
Amcrest IP8M-MB2546EW<v2.622.00ac000.0.r.200320
Amcrest IP8M-MB2546EW
Amcrest Ip8m-mt2544ew<v2.622.00ac000.0.r.200320
Amcrest Ip8m-mt2544ew Firmware
Amcrest IP8M-T2499EW<v2.622.00ac000.0.r.200320
Amcrest Ip8m-t2499ew Firmware
Amcrest IPC-HX1X3X<v2.420.ac00.18.r.20200217
Amcrest Ipm-hx1 Firmware

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is CVE-2020-5735?

    CVE-2020-5735 is a vulnerability in Amcrest Cameras and NVR that allows an authenticated remote attacker to crash the device and possibly execute arbitrary code.

  • What is the severity of CVE-2020-5735?

    The severity of CVE-2020-5735 is high with a CVSS score of 8.8.

  • How does CVE-2020-5735 affect Amcrest Cameras and NVR?

    CVE-2020-5735 affects Amcrest Cameras and NVR by exploiting a stack-based buffer overflow over port 37777.

  • How can an attacker exploit CVE-2020-5735?

    An authenticated remote attacker can exploit CVE-2020-5735 to crash the device and potentially execute arbitrary code.

  • Are there any fixes or patches available for CVE-2020-5735?

    Currently, there is no information available about specific fixes or patches for CVE-2020-5735. It is recommended to contact the vendor for more information.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203