CVE-2019-11878

Name of the Vulnerable Software and Affected Versions XiongMai Besder IP20H1 version 4.02.R12.00035520.12012.047500.00200

Description An issue allows an attacker on the same local network to crash the camera by sending a crafted message with a size field larger than 0x80000000, potentially related to an integer overflow or use of a negative number. This results in the camera crashing for about 120 seconds.

Recommendations For XiongMai Besder IP20H1 version 4.02.R12.00035520.12012.047500.00200, as a temporary workaround, consider restricting access to the camera from the local network to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.