CISA reports actively exploited of vulnerability in Avtech IP Cameras
Take action: If you are using Avtech IP cameras and video recorders, isolate them in a trusted network not accessible from the internet and reach out to the vendor for patches.
Learn More
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an advisory about active exploitation of a vulnerability in Avtech Security cameras, tracked as CVE-2024-7029 (CVSS score 9.3).
CVE-2024-7029 allows remote command injection and execution without authentication over the network. Despite its significant risk, Avtech has not responded to CISA's attempts to address the vulnerability, leaving the issue unpatched.
The flaw affects Avtech AVM1203 IP cameras running firmware versions FullImg-1023-1007-1011-1009 and earlier. It may also impact other cameras and network video recorders (NVRs) from the Taiwanese manufacturer.
Users are advised to isolate the IP cameras and video recorders into a separate isolated network and contact the vendor for pacth.
The vulnerability was initially reported by Akamai, and a third-party organization has verified the affected products and firmware versions. Although no public attacks exploiting this flaw have been reported, Avtech cameras have previously been targets for various IoT botnets, such as Hide ‘N Seek and Mirai variants.
The impacted products are utilized globally, including in critical infrastructure sectors like commercial facilities, healthcare, financial services, and transportation.
