CyberSec.Space Logo
Back to CVE Browser

CVE-2020-5735

Known Exploited (CISA KEV)HIGH
8.8
CVSS Severity Score
EPSS Score74.7300%
EPSS Percentile98.19th
PublishedApr 8, 2020
Last ModifiedOct 31, 2025

Vulnerability Description

Amcrest cameras and NVR are vulnerable to a stack-based buffer overflow over port 37777. An authenticated remote attacker can abuse this issue to crash the device and possibly execute arbitrary code.

Affected Platforms (CPE)

πŸ’»
Amcrest

1080 Lite 8ch Firmware

All versions
πŸ’»
Amcrest

Amdv10814 H5 Firmware

All versions
πŸ’»
Amcrest

Ipm 721 Firmware

< v2.420.ac00.18.r.20200217
πŸ’»
Amcrest

Ip2m 841 Firmware

< v2.420.ac00.18.r.20200217
πŸ’»
Amcrest

Ip2m 841 V3 Firmware

< v2.800.0000000.6.r.200314
πŸ’»
Amcrest

Ip2m 853ew Firmware

< v2.623.00ac004.0.r.200316
πŸ’»
Amcrest

Ip2m 858w Firmware

< v2.623.00ac004.0.r.200316
πŸ’»
Amcrest

Ip2m 866w Firmware

< v2.623.00ac004.0.r.200316
πŸ’»
Amcrest

Ip2m 866ew Firmware

< v2.623.00ac004.0.r.200316
πŸ’»
Amcrest

Ip4m 1053ew Firmware

< v2.623.00ac004.0.r.200316
πŸ’»
Amcrest

Ip8m 2454ew Firmware

< v2.622.00ac000.0.r.200320
πŸ’»
Amcrest

Ip8m 2493eb Firmware

< v2.622.00ac000.0.r.200320
πŸ’»
Amcrest

Ip8m 2496eb Firmware

< v2.622.00ac000.0.r.200320
πŸ’»
Amcrest

Ip8m 2597e Firmware

< v2.800.00ac000.0.r.200330
πŸ’»
Amcrest

Ip8m Mb2546ew Firmware

< v2.622.00ac000.0.r.200320
πŸ’»
Amcrest

Ip8m Mt2544ew Firmware

< v2.622.00ac000.0.r.200320
πŸ’»
Amcrest

Ip8m T2499ew Firmware

< v2.622.00ac000.0.r.200320
πŸ’»
Amcrest

Ipm Hx1 Firmware

< v2.420.ac00.18.r.20200217

References & Advisories

πŸ”— http://packetstormsecurity.com/files/157164/Amcrest-Dahua-NVR-Camera-IP2M-841-Denial-Of-Service.html
πŸ”— https://www.tenable.com/security/research/tra-2020-20
πŸ”— http://packetstormsecurity.com/files/157164/Amcrest-Dahua-NVR-Camera-IP2M-841-Denial-Of-Service.html
πŸ”— https://www.tenable.com/security/research/tra-2020-20
πŸ”— https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-5735

Related Vulnerabilities

CVE-2026-121917.8

A vulnerability was found in Comma AI Openpilot 0.11. This issue affects the function pickle.load/pickle.loads of the file selfdri...

CVE-2026-121905.3

A vulnerability has been found in Genspark AI Workspace App 2.8.4 on Android. This vulnerability affects unknown code of the compo...

CVE-2026-121895.3

A flaw has been found in Moovit Bus & Public Transit App 1.18 on Android. This affects an unknown part of the component com.tranzm...

CVE-2026-121886.3

A vulnerability was detected in Grit42 Grit up to 0.11.0. Affected by this issue is some unknown functionality of the file modules...