CVE-2020-5735

Name: CVE-2020-5735
Creator: NVD / NIST
Published: 2020-04-08T13:15:13.003+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

HIGHCVSS 8.8/10Actively ExploitedEPSS 35.64%

Last modified Jun 17, 2026

CVE-2020-5735 is a high-severity vulnerability rated 8.8/10 on the CVSS scale. Amcrest cameras and NVR are vulnerable to a stack-based buffer overflow over port 37777. An authenticated remote attacker can abuse this issue to crash the device and possibly execute arbitrary code.. CISA has confirmed active exploitation in the wild. EPSS estimates a 35.64% chance of exploitation in the next 30 days.

Description

Amcrest cameras and NVR are vulnerable to a stack-based buffer overflow over port 37777. An authenticated remote attacker can abuse this issue to crash the device and possibly execute arbitrary code.

Metrics

CVSS 3.1

8.8/10

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Probability

35.64%

98.3th percentile

Probability of exploitation in the next 30 days. Learn more

Exploitation Status

This vulnerability is listed in CISA’s Known Exploited Vulnerabilities catalog, confirming active exploitation in the wild. Federal agencies must remediate by May 3, 2022.

Weakness Enumeration

Affected Software

Vendor	Product	Versions
Amcrest	1080-Lite 8ch Firmware	All versions
Amcrest	Amdv10814-H5 Firmware	All versions
Amcrest	Ipm-721 Firmware	< v2.420.ac00.18.r.20200217
Amcrest	Ip2m-841 Firmware	< v2.420.ac00.18.r.20200217
Amcrest	Ip2m-841-V3 Firmware	< v2.800.0000000.6.r.200314
Amcrest	Ip2m-853ew Firmware	< v2.623.00ac004.0.r.200316
Amcrest	Ip2m-858w Firmware	< v2.623.00ac004.0.r.200316
Amcrest	Ip2m-866w Firmware	< v2.623.00ac004.0.r.200316
Amcrest	Ip2m-866ew Firmware	< v2.623.00ac004.0.r.200316
Amcrest	Ip4m-1053ew Firmware	< v2.623.00ac004.0.r.200316
Amcrest	Ip8m-2454ew Firmware	< v2.622.00ac000.0.r.200320
Amcrest	Ip8m-2493eb Firmware	< v2.622.00ac000.0.r.200320
Amcrest	Ip8m-2496eb Firmware	< v2.622.00ac000.0.r.200320
Amcrest	Ip8m-2597e Firmware	< v2.800.00ac000.0.r.200330
Amcrest	Ip8m-Mb2546ew Firmware	< v2.622.00ac000.0.r.200320
Amcrest	Ip8m-Mt2544ew Firmware	< v2.622.00ac000.0.r.200320
Amcrest	Ip8m-T2499ew Firmware	< v2.622.00ac000.0.r.200320
Amcrest	Ipm-Hx1 Firmware	< v2.420.ac00.18.r.20200217

References

http://packetstormsecurity.com/files/157164/Amcrest-Dahua-NVR-Camera-IP2M-841-Denial-Of-Service.htmlExploit, Third Party Advisory, VDB Entry
https://www.tenable.com/security/research/tra-2020-20Third Party Advisory
http://packetstormsecurity.com/files/157164/Amcrest-Dahua-NVR-Camera-IP2M-841-Denial-Of-Service.htmlExploit, Third Party Advisory, VDB Entry
https://www.tenable.com/security/research/tra-2020-20Third Party Advisory
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-5735US Government Resource

Timeline

Published: Apr 8, 2020
Last Modified: Jun 17, 2026
Status: Analyzed

Frequently Asked Questions

What is CVE-2020-5735?

Amcrest cameras and NVR are vulnerable to a stack-based buffer overflow over port 37777. An authenticated remote attacker can abuse this issue to crash the device and possibly execute arbitrary code.

How severe is CVE-2020-5735?

CVE-2020-5735 has a CVSS score of 8.8/10 (HIGH severity). The EPSS model estimates a 35.64% probability of exploitation in the next 30 days. This vulnerability is listed in CISA's Known Exploited Vulnerabilities catalog.

How do I fix CVE-2020-5735?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2020-5735?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST