Authentication Bypass in LG Innotek Camera_CVE-2025-7742

8.3 / 10

HIGH

CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:L/VA:L/SC:N/SI:N/SA:N

Description

An authentication vulnerability exists in the LG Innotek camera model LNV5110R firmware that allows a malicious actor to upload an HTTP POST request to the devices non-volatile storage. This action may result in remote code execution that allows an attacker to run arbitrary commands on the target device at the administrator privilege level.

Basic Information

ID CVE-2025-7742

Source LGE

Published Jul 24, 2025 at 23:28

Modified Jul 25, 2025 at 17:33

Affected Product

Vendor LG Innotek

Product Camera Model LNV5110R

Version All

Affected Versions LG Innotek Camera Model LNV5110R All

CWE Classification

CWE-288

References

www.cisa.gov /news-events/ics-advisories/icsa-25-205-04

{
    "lastseen": "",
    "description": "An authentication vulnerability exists in the LG Innotek camera model LNV5110R firmware that allows a malicious actor to upload an HTTP POST request to the devices non-volatile storage. This action may result in remote code execution that allows an attacker to run arbitrary commands on the target device at the administrator privilege level.",
    "published": "2025-07-24T23:28:32.443Z",
    "modified": "2025-07-25T17:33:14.255Z",
    "type": "cve",
    "title": "Authentication Bypass in LG Innotek Camera",
    "source": "LGE",
    "references": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-205-04",
    "id": "CVE-2025-7742",
    "bulletinFamily": "",
    "cwe": [
        "CWE-288"
    ],
    "cvelist": null,
    "sourceData": "LG Innotek Camera Model LNV5110R All",
    "sourceHref": "",
    "cvss": {
        "score": 8.3,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:L/VA:L/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Camera Model LNV5110R",
    "version": "All",
    "vendor": "LG Innotek",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}