CVE-2024-51347 is a buffer overflow vulnerability identified in the dgiot binary component of LSC Smart Indoor IP Camera firmware version 7.6.32. The vulnerability stems from improper handling of the Time Zone (TZ) parameter within the ONVIF configuration interface. Specifically, the TZ parameter's length is not validated before being copied into a fixed-size buffer using the unsafe strcpy function, which does not perform bounds checking. This lack of validation allows an attacker to supply an overly long TZ string, causing a buffer overflow. Buffer overflows can lead to memory corruption, enabling attackers to execute arbitrary code, crash the device, or disrupt normal operation. The ONVIF interface is commonly used for device configuration and management, and if exposed to untrusted networks, it can be targeted remotely. Although no public exploits have been reported yet, the vulnerability's nature and the use of unsafe string functions make it a high-risk issue. The absence of a CVSS score requires an assessment based on impact and exploitability factors. The vulnerability affects the confidentiality, integrity, and availability of the device, as attackers could potentially gain control or disrupt the camera's operation. The vulnerability does not require user interaction but does require access to the ONVIF interface, which may be exposed on internal or external networks depending on deployment. The lack of patch information suggests that vendors or users should urgently seek firmware updates or implement mitigations.

The impact of CVE-2024-51347 is significant for organizations deploying LSC Smart Indoor IP Cameras, especially in security-sensitive environments such as corporate offices, government facilities, and critical infrastructure. Successful exploitation could allow attackers to execute arbitrary code on the device, leading to full compromise of the camera. This could result in unauthorized surveillance, manipulation or disabling of video feeds, and use of the compromised device as a foothold for lateral movement within the network. Additionally, denial of service attacks could disrupt security monitoring capabilities. The vulnerability undermines the confidentiality, integrity, and availability of the affected devices. Given the widespread use of ONVIF-compliant cameras and the common practice of exposing such devices to networks without sufficient segmentation, the risk is elevated. Organizations relying on these cameras for physical security may face increased risk of espionage, data leakage, or operational disruption.

To mitigate CVE-2024-51347, organizations should first check with the vendor for any available firmware updates that address this vulnerability and apply them promptly. If no patch is available, network-level mitigations should be implemented, including restricting access to the ONVIF interface via firewall rules or network segmentation, limiting it to trusted management networks only. Disabling the ONVIF interface if not required can reduce the attack surface. Monitoring network traffic for unusual or malformed ONVIF requests may help detect exploitation attempts. Employing intrusion detection or prevention systems with signatures targeting buffer overflow attempts on ONVIF protocols can provide additional defense. Vendors and integrators should review and update their software development practices to replace unsafe string functions like strcpy with safer alternatives that perform bounds checking, such as strncpy or strlcpy. Regular security assessments and penetration testing of IP camera deployments are recommended to identify and remediate similar vulnerabilities proactively.