CRITICAL
AVer
CVE published 2026-06-19
CVE-2026-40624
A critical vulnerability (CVE-2026-40624) exists in AVer PTC500S, PTC115, PTC500+, and PTC115+ cameras due to improper input validation. This allows a remote, unauthenticated attacker to execute arbitrary code via specially crafted web requests. The vulnerability has a CVSS score of 9.3, indicating a critical severity. Organizations using these cameras should take immediate action to mitigate the risk.