Exploited
high
8.8
CWE
119 787 121
Advisory Published
Updated

CVE-2020-5735: Amcrest Cameras and NVR Stack-based Buffer Overflow Vulnerability

First published: Wed Apr 08 2020(Updated: )

Amcrest cameras and NVR are vulnerable to a stack-based buffer overflow over port 37777. An authenticated remote attacker can abuse this issue to crash the device and possibly execute arbitrary code.

Credit: vulnreport@tenable.com vulnreport@tenable.com

Affected SoftwareAffected VersionHow to fix
Amcrest 1080-lite 8ch Firmware
Amcrest 1080-lite 8ch
Amcrest Amdv10814-h5 Firmware
Amcrest Amdv10814-h5
Amcrest Ipm-721 Firmware<v2.420.ac00.18.r.20200217
Amcrest Ipm-721
Amcrest Ip2m-841 Firmware<v2.420.ac00.18.r.20200217
Amcrest Ip2m-841
Amcrest Ip2m-841-v3 Firmware<v2.800.0000000.6.r.200314
Amcrest Ip2m-841-v3
Amcrest Ip2m-853ew Firmware<v2.623.00ac004.0.r.200316
Amcrest Ip2m-853ew
Amcrest Ip2m-858w Firmware<v2.623.00ac004.0.r.200316
Amcrest Ip2m-858w
Amcrest Ip2m-866w Firmware<v2.623.00ac004.0.r.200316
Amcrest Ip2m-866w
Amcrest Ip2m-866ew Firmware<v2.623.00ac004.0.r.200316
Amcrest Ip2m-866ew
Amcrest Ip4m-1053ew Firmware<v2.623.00ac004.0.r.200316
Amcrest Ip4m-1053ew
Amcrest Ip8m-2454ew Firmware<v2.622.00ac000.0.r.200320
Amcrest Ip8m-2454ew
Amcrest Ip8m-2493eb Firmware<v2.622.00ac000.0.r.200320
Amcrest Ip8m-2493eb
Amcrest Ip8m-2496eb Firmware<v2.622.00ac000.0.r.200320
Amcrest Ip8m-2496eb
Amcrest Ip8m-2597e Firmware<v2.800.00ac000.0.r.200330
Amcrest Ip8m-2597e
Amcrest Ip8m-mb2546ew Firmware<v2.622.00ac000.0.r.200320
Amcrest Ip8m-mb2546ew
Amcrest Ip8m-mt2544ew Firmware<v2.622.00ac000.0.r.200320
Amcrest Ip8m-mt2544ew
Amcrest Ip8m-t2499ew Firmware<v2.622.00ac000.0.r.200320
Amcrest Ip8m-t2499ew
Amcrest Ipm-hx1 Firmware<v2.420.ac00.18.r.20200217
Amcrest Ipm-hx1
Amcrest Cameras and Network Video Recorder (NVR)
All of
Amcrest 1080-lite 8ch
Amcrest 1080-lite 8ch Firmware
All of
Amcrest Amdv10814-h5
Amcrest Amdv10814-h5 Firmware
All of
Amcrest Ipm-721
Amcrest Ipm-721 Firmware<v2.420.ac00.18.r.20200217
All of
Amcrest Ip2m-841
Amcrest Ip2m-841 Firmware<v2.420.ac00.18.r.20200217
All of
Amcrest Ip2m-841-v3
Amcrest Ip2m-841-v3 Firmware<v2.800.0000000.6.r.200314
All of
Amcrest Ip2m-853ew
Amcrest Ip2m-853ew Firmware<v2.623.00ac004.0.r.200316
All of
Amcrest Ip2m-858w
Amcrest Ip2m-858w Firmware<v2.623.00ac004.0.r.200316
All of
Amcrest Ip2m-866w
Amcrest Ip2m-866w Firmware<v2.623.00ac004.0.r.200316
All of
Amcrest Ip2m-866ew Firmware<v2.623.00ac004.0.r.200316
Amcrest Ip2m-866ew
All of
Amcrest Ip4m-1053ew Firmware<v2.623.00ac004.0.r.200316
Amcrest Ip4m-1053ew
All of
Amcrest Ip8m-2454ew Firmware<v2.622.00ac000.0.r.200320
Amcrest Ip8m-2454ew
All of
Amcrest Ip8m-2493eb Firmware<v2.622.00ac000.0.r.200320
Amcrest Ip8m-2493eb
All of
Amcrest Ip8m-2496eb Firmware<v2.622.00ac000.0.r.200320
Amcrest Ip8m-2496eb
All of
Amcrest Ip8m-2597e Firmware<v2.800.00ac000.0.r.200330
Amcrest Ip8m-2597e
All of
Amcrest Ip8m-mb2546ew Firmware<v2.622.00ac000.0.r.200320
Amcrest Ip8m-mb2546ew
All of
Amcrest Ip8m-mt2544ew Firmware<v2.622.00ac000.0.r.200320
Amcrest Ip8m-mt2544ew
All of
Amcrest Ip8m-t2499ew Firmware<v2.622.00ac000.0.r.200320
Amcrest Ip8m-t2499ew
All of
Amcrest Ipm-hx1 Firmware<v2.420.ac00.18.r.20200217
Amcrest Ipm-hx1

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is CVE-2020-5735?

    CVE-2020-5735 is a vulnerability in Amcrest Cameras and NVR that allows an authenticated remote attacker to crash the device and possibly execute arbitrary code.

  • What is the severity of CVE-2020-5735?

    The severity of CVE-2020-5735 is high with a CVSS score of 8.8.

  • How does CVE-2020-5735 affect Amcrest Cameras and NVR?

    CVE-2020-5735 affects Amcrest Cameras and NVR by exploiting a stack-based buffer overflow over port 37777.

  • How can an attacker exploit CVE-2020-5735?

    An authenticated remote attacker can exploit CVE-2020-5735 to crash the device and potentially execute arbitrary code.

  • Are there any fixes or patches available for CVE-2020-5735?

    Currently, there is no information available about specific fixes or patches for CVE-2020-5735. It is recommended to contact the vendor for more information.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203