Vulnerability Description
Longse NVR (Network Video Recorder) model NVR3608PGE2W, as well as products based on this device, create a WiFi network with a default password. A user is neither advised to change it during the installation process, nor such a need is described in the manual. As the cameras from the same kit connect automatically, it is very probable for the default password to be left unchanged.
Related Weaknesses (CWE)
References
- https://cert.pl/en/posts/2024/07/CVE-2024-5631/
- https://cert.pl/posts/2024/07/CVE-2024-5631/
- https://zamel.com/pl/gardi/zestaw-monitoringu-bezprzewodowego-wi-fi-typ-zmb-01
- https://cert.pl/en/posts/2024/07/CVE-2024-5631/
- https://cert.pl/posts/2024/07/CVE-2024-5631/
- https://zamel.com/pl/gardi/zestaw-monitoringu-bezprzewodowego-wi-fi-typ-zmb-01
FAQ
What is CVE-2024-5632?
CVE-2024-5632 is a documented vulnerability. Longse NVR (Network Video Recorder) model NVR3608PGE2W, as well as products based on this device, create a WiFi network with a default password. A user is neither advised to change it during the insta...
How severe is CVE-2024-5632?
CVSS scoring is not yet available for CVE-2024-5632. Check NVD for updates.
Is there a patch for CVE-2024-5632?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.