Lorex 2k Indoor Wi-fi Security Camera
7 CVEs affecting Lorex 2k Indoor Wi-fi Security Camera. Latest disclosed: 2026-07-13. Critical: 1, High: 3.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-52544 | Critical | 9.8 | 2024-12-03 | An unauthenticated attacker can trigger a stack based buffer overflow in the DP Service (TCP port 3500). This vulnerability has been resolved in firmware versi… |
CVE-2026-15683 | High | 7.5 | 2026-07-13 | Lorex 2K Indoor Wi-Fi Security Camera Device Management Server Improper Certificate Validation Vulnerability. This vulnerability allows network-adjacent attack… |
CVE-2026-15680 | High | 7.5 | 2026-07-13 | Lorex 2K Indoor Wi-Fi Security Camera CDeviceOperator Format String Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers t… |
CVE-2024-52547 | High | 7.2 | 2024-12-03 | An authenticated attacker can trigger a stack based buffer overflow in the DHIP Service (TCP port 80). This vulnerability has been resolved in firmware version… |
CVE-2024-52548 | Medium | 6.7 | 2024-12-03 | An attacker who can execute arbitrary Operating Systems commands, can bypass code signing enforcements in the kernel, and execute arbitrary native code. This v… |
CVE-2024-52545 | Medium | 6.5 | 2024-12-03 | An unauthenticated attacker can perform an out of bounds heap read in the IQ Service (TCP port 9876). This vulnerability has been resolved in firmware version… |
CVE-2024-52546 | Medium | 5.3 | 2024-12-03 | An unauthenticated attacker can perform a null pointer dereference in the DHIP Service (UDP port 37810). This vulnerability has been resolved in firmware versi… |