Lorex

Lorex is a well-known manufacturer of surveillance and security camera systems. This high-severity vulnerability requires adjacent network access and is difficult to exploit, but once successful grants an attacker high-level compromise of confidentiality, integrity, and availability without requiring authentication or user interaction. Security teams should monitor for any unusual network activity targeting Lorex devices and prepare patches for deployment after the November 5th vendor deadline.