Hundreds of LG LNV5110R cameras are affected by an unpatched auth bypass flaw that allows hackers to gain admin access.
US Cybersecurity and Infrastructure Security Agency warns that hundreds of LG LNV5110R cameras are impacted by an unpatched authentication bypass vulnerability.
The flaw, tracked as CVE-2025-7742 (CVSS score of 8.3), can allow attackers to gain admin access. The vulnerability was reported to CISA by the researcher Souvik Kandar.
An attacker can trigger to vulnerability to upload an HTTP POST request to the device’s non-volatile storage, leading to remote code execution with elevated privileges.
“An authentication vulnerability exists in the LG Innotek camera model LNV5110R firmware that allows a malicious actor to upload an HTTP POST request to the devices non-volatile storage.” reads the alert issued by CISA. “This action may result in remote code execution that allows an attacker to run arbitrary commands on the target device at the administrator privilege level.”
LG Innotek is aware of the vulnerability, but it will not patch it because LG LNV5110R cameras are an end-of-life products.
CISA remarks that the affected LG cameras are deployed globally, including within the commercial facilities sector, which is designated as critical infrastructure. This means the vulnerability doesn’t just pose a risk to isolated devices, but potentially endangers facilities that are vital to public safety and national operations.
Kandar told SecurityWeek that ~1,300 cameras exposed online are vulnerable to full unauthenticated RCE, allowing remote takeover and network pivoting.
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
(SecurityAffairs – hacking, LG LNV5110R)
Source: SecurityAffairs
Source Link: https://securityaffairs.com/180368/security/unpatched-flaw-in-eol-lg-lnv5110r-cameras-lets-hackers-gain-admin-access.html