CVE-2020-5735

HIGH KEV

Amcrest - Buffer Overflow

Title source: llm

Description

Amcrest cameras and NVR are vulnerable to a stack-based buffer overflow over port 37777. An authenticated remote attacker can abuse this issue to crash the device and possibly execute arbitrary code.

Exploits (1)

exploitdb WORKING POC

by Jacob Baines · pythondoshardware

https://www.exploit-db.com/exploits/48304

View Code ZIP pw:eip

References (3)

[Exploit, Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/157164/Amcrest-Dahua-NVR-Camera-IP2M-841-Denial-Of-Service.html

[Third Party Advisory] https://www.tenable.com/security/research/tra-2020-20

[US Government Resource] https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-5735

Scores

CVSS v3 8.8

EPSS 0.5352

EPSS Percentile 98.0%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CISA KEV 2021-11-03

VulnCheck KEV 2021-11-03

InTheWild.io 2021-07-23

ENISA EUVD EUVD-2020-26894

CWE

CWE-121 CWE-787

Status published

Products (18)

amcrest/1080-lite_8ch_firmware

amcrest/amdv10814-h5_firmware

amcrest/ip2m-841_firmware < v2.420.ac00.18.r.20200217

amcrest/ip2m-841-v3_firmware < v2.800.0000000.6.r.200314

amcrest/ip2m-853ew_firmware < v2.623.00ac004.0.r.200316

amcrest/ip2m-858w_firmware < v2.623.00ac004.0.r.200316

amcrest/ip2m-866ew_firmware < v2.623.00ac004.0.r.200316

amcrest/ip2m-866w_firmware < v2.623.00ac004.0.r.200316

amcrest/ip4m-1053ew_firmware < v2.623.00ac004.0.r.200316

amcrest/ip8m-2454ew_firmware < v2.622.00ac000.0.r.200320

... and 8 more

Published Apr 08, 2020

KEV Added Nov 03, 2021

Tracked Since Feb 18, 2026