CVE-2024-5631

Name of the Vulnerable Software and Affected Versions Longse NVR (Network Video Recorder) model NVR3608PGE2W Longse model LBH30FE200W cameras

Description The issue concerns the transmission of user login and password to a remote control service without encryption, allowing an on-path attacker to eavesdrop on the credentials and obtain access to the video stream. This occurs when a user changes their password in the router's portal. Additionally, there is an issue with an undocumented binary service CoolView that provides unrestricted access to an attacker in the same local network, potentially allowing read/write operations on the device's memory and bypassing telnet login.

Recommendations For Longse NVR (Network Video Recorder) model NVR3608PGE2W, consider disabling the remote control service until a patch is available to prevent credential eavesdropping. For Longse model LBH30FE200W cameras, restrict access to the undocumented binary service CoolView to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.