CVE-2024-11131

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Mar 19, 2025

CWE ID 125

Summary

CVE-2024-11131 is a recently discovered vulnerability affecting Synology's BC500, CC400W, and TC500 camera models. The issue stems from an out-of-bounds read vulnerability in the video interface. This flaw allows remote attackers to execute arbitrary code, exploiting unspecified vectors. Synology urged users with firmware versions below 1.2.0-0525 to upgrade and apply relevant security patches immediately to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/0dccCW
https://www.cve.org/CVERecord?id=CVE-2024-11131
https://nvd.nist.gov/vuln/detail/CVE-2024-11131

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Uncovering MintsLoader With Recorded Future Malware Intelligence Hunting

Know What Matters

For Customers

For Partners

CVE-2024-11131

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations