GCVE - cpe:2.3:o:lorextechnology:w461asc-e_firmware:-:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:o:lorextechnology:w461asc-e_firmware:-:*:*:*:*:*:*:*

part: o version: - update: *

Vendor	Lorextechnology (`f58e2b61-9b29-5d67-8638-0229ad9f2f23`)
Product	W461Asc E Firmware (`ebfb362d-ac35-5fe9-8a0e-29afbd4d047a`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2024-52548`	vulnerable	2026-06-08 06:52:16.044022	Lorex 2K Indoor Wi-Fi Security Camera - Code signing bypass MEDIUM (6.7) An attacker who can execute arbitrary Operating Systems commands, can bypass code signing enforcements in the kernel, and execute arbitrary native code. This vulnerability has been resolved in firmware version 2.800.0000000.8.R.20241111. Published: 2024-12-03T17:29:59.241Z Updated: 2024-12-03T21:04:00.985Z Open on db.gcve.eu Reference links https://github.com/sfewer-r7/LorexExploit https://www.rapid7.com/blog/post/2024/12/03/lorex-2k-indoor-wi-fi-security-camera-multiple-vulnerabilities-fixed/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-52547`	vulnerable	2026-06-08 06:52:16.043592	Lorex 2K Indoor Wi-Fi Security Camera - Stack buffer overflow HIGH (7.2) An authenticated attacker can trigger a stack based buffer overflow in the DHIP Service (TCP port 80). This vulnerability has been resolved in firmware version 2.800.0000000.8.R.20241111. Published: 2024-12-03T17:25:31.962Z Updated: 2025-09-05T08:31:14.731Z Open on db.gcve.eu Reference links https://github.com/sfewer-r7/LorexExploit https://www.rapid7.com/blog/post/2024/12/03/lorex-2k-indoor-wi-fi-security-camera-multiple-vulnerabilities-fixed/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-52546`	vulnerable	2026-06-08 06:52:16.043256	Lorex 2K Indoor Wi-Fi Security Camera - Null pointer dereference MEDIUM (5.3) An unauthenticated attacker can perform a null pointer dereference in the DHIP Service (UDP port 37810). This vulnerability has been resolved in firmware version 2.800.0000000.8.R.20241111. Published: 2024-12-03T17:23:01.246Z Updated: 2024-12-03T21:03:10.700Z Open on db.gcve.eu Reference links https://github.com/sfewer-r7/LorexExploit https://www.rapid7.com/blog/post/2024/12/03/lorex-2k-indoor-wi-fi-security-camera-multiple-vulnerabilities-fixed/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-52545`	vulnerable	2026-06-08 06:52:16.042776	Lorex 2K Indoor Wi-Fi Security Camera - Out of bounds heap read MEDIUM (6.5) An unauthenticated attacker can perform an out of bounds heap read in the IQ Service (TCP port 9876). This vulnerability has been resolved in firmware version 2.800.0000000.8.R.20241111. Published: 2024-12-03T17:20:45.858Z Updated: 2024-12-03T21:02:16.869Z Open on db.gcve.eu Reference links https://github.com/sfewer-r7/LorexExploit https://www.rapid7.com/blog/post/2024/12/03/lorex-2k-indoor-wi-fi-security-camera-multiple-vulnerabilities-fixed/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-52544`	vulnerable	2026-06-08 06:52:16.041725	Lorex 2K Indoor Wi-Fi Security Camera - Stack buffer overflow CRITICAL (9.8) An unauthenticated attacker can trigger a stack based buffer overflow in the DP Service (TCP port 3500). This vulnerability has been resolved in firmware version 2.800.0000000.8.R.20241111. Published: 2024-12-03T17:18:17.023Z Updated: 2025-09-05T08:31:44.927Z Open on db.gcve.eu Reference links https://github.com/sfewer-r7/LorexExploit https://www.rapid7.com/blog/post/2024/12/03/lorex-2k-indoor-wi-fi-security-camera-multiple-vulnerabilities-fixed/	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.