CVE-2024-52548

MEDIUM

Firmware <2.800.0000000.8.R.20241111 - Privilege Escalation

Title source: llm
STIX 2.1

Description

An attacker who can execute arbitrary Operating Systems commands, can bypass code signing enforcements in the kernel, and execute arbitrary native code. This vulnerability has been resolved in firmware version 2.800.0000000.8.R.20241111.

References (2)

Scores

CVSS v3 6.7
EPSS 0.0001
EPSS Percentile 1.6%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-345
Status published
Products (1)
Lorex/2K Indoor Wi-Fi Security Camera < 2.800.0000000.8.R.20241111
Published Dec 03, 2024
Tracked Since Feb 18, 2026