LG Innotek Camera Flaws Could Give Hackers Full Admin Access
gbhackersA critical security vulnerability has been discovered in LG Innotek’s LNV5110R CCTV camera model that could allow remote attackers to gain complete administrative control over affected devices.
The vulnerability, designated as CVE-2025-7742, represents a significant authentication bypass flaw that poses serious risks to organizations using these security cameras worldwide.
Critical Authentication Bypass Vulnerability
The Cybersecurity and Infrastructure Security Agency (CISA) issued an advisory on July 24, 2025, warning about a severe authentication bypass vulnerability affecting all versions of the LG Innotek LNV5110R camera model.
| Attribute | Details |
| CVE ID | CVE-2025-7742 |
| CVSS v4 Score | 8.3 (High) |
| CVSS v3 Score | 7.0 (High) |
| CWE Classification | CWE-288 (Authentication Bypass) |
The flaw, classified under CWE-288 (Authentication Bypass Using an Alternate Path or Channel), enables malicious actors to upload HTTP POST requests to the device’s non-volatile storage.
This vulnerability carries a CVSS v4 base score of 8.3 and a CVSS v3 score ...
Copyright of this story solely belongs to gbhackers . To see the full text click HERE