CVE-2024-54013

Published: Apr 28, 2026 Last Modified: Apr 28, 2026

ExploitDB:

Other exploit source:

Google Dorks:

HIGH 8,7

Source: fc9afe74-3f80-4fb7-a313-e6f036a89882

Attack Vector: adjacent

Attack Complexity: low

Privileges Required: none

User Interaction: none

Confidentiality: N/A

Integrity: N/A

Availability: N/A

Description

AI Translation Available

Penetration Testing engineers at Amazon have identified a security flaw related to request handling in the web server component that could, under certain conditions, lead to unintended access to protected functions. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer's report for details and workarounds

306

Missing Authentication for Critical Function

Draft

Abstraction: Base Structure: Simple

Common Consequences

Security Scopes Affected:

Access Control Other

Potential Impacts:

Gain Privileges Or Assume Identity Varies By Context

Applicable Platforms

Technologies: Cloud Computing, ICS/OT

Likelihood of Exploit: High

View CWE Details

https://www.hanwhavision.com/wp-content/uploads/2026/04/Cam…

https://www.hanwhavision.com/wp-content/uploads/2026/04/Camera-Vulnerability-Re…

CVE-2024-54013

Description

Missing Authentication for Critical Function

Common Consequences

Applicable Platforms

Iscriviti alla newsletter