CVE-2020-15744
CRITICALVicture PC420 Firmware <= 1.2.2 - Remote Code Execution via ONVIF Server Stack Overflow
Title source: llmDescription
Stack-based Buffer Overflow vulnerability in the ONVIF server component of Victure PC420 smart camera allows an attacker to execute remote code on the target device. This issue affects: Victure PC420 firmware version 1.2.2 and prior versions.
References (1)
Core 1
Core References
Third Party Advisory x_refsource_misc
https://www.bitdefender.com/blog/labs/cracking-the-victure-pc420-camera
Scores
CVSS v3
9.6
EPSS
0.0141
EPSS Percentile
69.3%
Attack Vector
ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Details
CWE
CWE-121
CWE-787
Status
published
Products (1)
govicture/pc420_firmware
< 1.2.2
Published
Aug 30, 2021
Tracked Since
Feb 18, 2026