CVE-2024-39091

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Aug 12, 2024
Updated: Aug 13, 2024
CWE ID 78

Summary

CVE-2024-39091 is a newly disclosed vulnerability affecting the ccm_debug component in MIPC Camera firmware versions prior to v5.4.1.240424171021. This issue permits attackers on the same network to inject and execute arbitrary OS commands via a specially crafted HTML request. Successful exploitation could lead to unauthorized access, data theft, or system compromise. Users are urged to update their camera firmware to the latest version to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share