CRITICAL🇵🇱 Wersja polska

CVE-2024-41623

CVSS 9.8v3.1pub. 2024-08-13upd. 2026-07-05

An issue in D3D Security D3D IP Camera (D8801) v.V9.1.17.1.4-20180428 allows a local attacker to execute arbitrary code via a crafted payload

🤖 AI Analysis
How it works

An attacker with local access to the device can deliver a specially crafted payload that leads to arbitrary code execution on the device. The vulnerability is classified as CWE-94 (improper control of generation of code), which suggests the possibility of code injection and execution of malicious code. The detailed mechanism of the vulnerability has not been disclosed in the available description.

Impact

An attacker can gain full control over the device by executing arbitrary code with the privileges of the camera system, which may lead to violations of confidentiality, integrity, and availability of the device and data captured by it.

Mitigation & patch

Patches available from the manufacturer should be applied according to the references. It is also recommended to restrict physical and network access to the device and monitor device activity until updates are applied.

Who is affected

D3D Security D8801 IP Camera with software version V9.1.17.1.4-20180428

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • D3dsecurity D8801

    HW
    D3Dsecurity
    wszystkie wersje
  • D3dsecurity D8801 Firmware

    OS
    D3Dsecurity
    9.1.17.1.4-20180428
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCE
CWE
References

Related vulnerabilities

CVE-2025-65552CRITICAL9.8PL ✓ten sam vendor

RF replay attack na system alarmowy D3D ZX-G12 (433 MHz)

CVE-2025-65553MEDIUM6.5ten sam vendor

D3D Wi-Fi Home Security System ZX-G12 v2.1.17 is susceptible to RF jamming on the 433 MHz alarm sensor channel...