CVE-2020-9527

Name of the Vulnerable Software and Affected Versions Firmware developed by Shenzhen Hichip Vision Technology versions V6 through V20

Description The firmware suffers from a buffer overflow issue that allows unauthenticated remote attackers to execute arbitrary code via the peer-to-peer (P2P) service. This issue affects products from numerous vendors, potentially impacting millions of Internet of Things devices.

Recommendations For versions V6 through V20, update the firmware to a version that addresses the buffer overflow vulnerability. If no such update is available, consider disabling the P2P service as a temporary workaround to minimize the risk of exploitation.