cbcvebase.
CVE-2020-5736
published 2020-04-08

CVE-2020-5736: Amcrest cameras and NVR are vulnerable to a null pointer dereference over port 37777. An authenticated remote attacker can abuse this issue to crash the device.

PriorityP433medium6.5CVSS 3.1
AVNACLPRLUINSUCNINAH
EPSS
1.58%
72.5th percentile
Amcrest cameras and NVR are vulnerable to a null pointer dereference over port 37777. An authenticated remote attacker can abuse this issue to crash the device.

Affected

16 ranges
VendorProductVersion rangeFixed in
amcrestip2m-841-v3_firmware< v2.800.0000000.6.r.200314v2.800.0000000.6.r.200314
amcrestip2m-841_firmware< v2.420.ac00.18.r.20200217v2.420.ac00.18.r.20200217
amcrestip2m-853ew_firmware< v2.623.00ac004.0.r.200316v2.623.00ac004.0.r.200316
amcrestip2m-858w_firmware< v2.623.00ac004.0.r.200316v2.623.00ac004.0.r.200316
amcrestip2m-866ew_firmware< v2.623.00ac004.0.r.200316v2.623.00ac004.0.r.200316
amcrestip2m-866w_firmware< v2.623.00ac004.0.r.200316v2.623.00ac004.0.r.200316
amcrestip4m-1053ew_firmware< v2.623.00ac004.0.r.200316v2.623.00ac004.0.r.200316
amcrestip8m-2454ew_firmware< v2.622.00ac000.0.r.200320v2.622.00ac000.0.r.200320
amcrestip8m-2493eb_firmware< v2.622.00ac000.0.r.200320v2.622.00ac000.0.r.200320
amcrestip8m-2496eb_firmware< v2.622.00ac000.0.r.200320v2.622.00ac000.0.r.200320
amcrestip8m-2597e_firmware< v2.800.00ac000.0.r.200330v2.800.00ac000.0.r.200330
amcrestip8m-mb2546ew_firmware< v2.622.00ac000.0.r.200320v2.622.00ac000.0.r.200320
amcrestip8m-mt2544ew_firmware< v2.622.00ac000.0.r.200320v2.622.00ac000.0.r.200320
amcrestip8m-t2499ew_firmware< v2.622.00ac000.0.r.200320v2.622.00ac000.0.r.200320
amcrestipm-721_firmware< v2.420.ac00.18.r.20200217v2.420.ac00.18.r.20200217
amcrestipm-hx1_firmware< v2.420.ac00.18.r.20200217v2.420.ac00.18.r.20200217

CVSS provenance

nvdv3.16.5MEDIUMCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
nvdv2.06.8MEDIUMAV:N/AC:L/Au:S/C:N/I:N/A:C
vendor_redhat8.6HIGH
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.