CVE-2020-15744 CRITICAL

CVE-2020-15744: Stack-based buffer overflow leading to RCE in Victure Camera

Vendor Victure
Product PC420
Weakness CWE-121
Published August 30, 2021
Last update September 17, 2024

CVSS base score

9.6/10
Attack vector Adjacent
Attack complexity Low
Privileges required None
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

What the vulnerability does

01Description

Stack-based Buffer Overflow vulnerability in the ONVIF server component of Victure PC420 smart camera allows an attacker to execute remote code on the target device. This issue affects: Victure PC420 firmware version 1.2.2 and prior versions.

Key dates

02Disclosure timeline

August 30, 2021 CVE published
September 17, 2024 Record updated