Unrated severityNVD Advisory· Published Jan 15, 2014· Updated Apr 29, 2026

CVE-2014-1201

Description

Buffer overflow in the INetViewX ActiveX control in the Lorex Edge LH310 and Edge+ LH320 series with firmware 7-35-28-1B26E, Edge2 LH330 series with firmware 11.17.38-33_1D97A, and Edge3 LH340 series with firmware 11.19.85_1FE3A allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long string in the HTTP_PORT parameter.

Affected products

Lorextechnology/Edge2 Lh330 Firmware
cpe:2.3:a:lorex_technology:edge2_lh330_firmware:11.17.38-33_1d97a:*:*:*:*:*:*:*
Lorextechnology/Edge3 Lh340 Firmware
cpe:2.3:a:lorex_technology:edge3_lh340_firmware:11.19.85_1fe3a:*:*:*:*:*:*:*
Lorextechnology/Edge Lh310 Firmware
cpe:2.3:a:lorex_technology:edge_lh310_firmware:7-35-28-1b26e:*:*:*:*:*:*:*
Lorextechnology/Edge\+ Lh320 Firmware
cpe:2.3:a:lorex_technology:edge\+_lh320_firmware:7-35-28-1b26e:*:*:*:*:*:*:*
Lorextechnology/Edge2
cpe:2.3:h:lorextechnology:edge2:lh330:*:*:*:*:*:*:*
Lorextechnology/Edge3
cpe:2.3:h:lorextechnology:edge3:lh340:*:*:*:*:*:*:*
Lorextechnology/Edge\+2 versions
cpe:2.3:h:lorextechnology:edge:lh310:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:h:lorextechnology:edge:lh310:*:*:*:*:*:*:*
- cpe:2.3:h:lorextechnology:edge\+:lh320:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.019
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000