AVer PTC cameras

Plan PatchCVSS 9.8ICS-CERT ICSA-26-169-01Jun 18, 2026

PTC

Attack path

Attack VectorNetwork

Auth RequiredNone

ComplexityLow

User InteractionNone needed

Summary

AVer PTC500S, PTC115, PTC500+, and PTC115+ cameras contain a file permission vulnerability (CWE-552) that allows unauthenticated remote attackers to execute arbitrary code without user interaction. The vulnerability is network-accessible and has a CVSS score of 9.8. AVer has released a firmware fix available from their download portal.

What this means

What could happen

An attacker could run arbitrary code on the PTC camera, allowing them to disable video feeds, capture credentials, redirect streams to unauthorized locations, or use the device as a pivot point into your network infrastructure.

Who's at risk

Operators and facility managers at water utilities, power plants, and other critical infrastructure sites using AVer PTC500S, PTC115, PTC500+, or PTC115+ cameras for surveillance, process monitoring, or safety system recording should apply the firmware fix immediately. These cameras are often deployed to monitor equipment status and operational safety in unmanned or remote plant areas.

How it could be exploited

An attacker with network access to the camera (port 443 or management interface) can exploit a file permission vulnerability (CWE-552) to upload and execute arbitrary code without authentication or user interaction.

Prerequisites

Network access to the PTC camera management interface or web server port
No authentication required

remotely exploitableno authentication requiredlow complexityarbitrary code executioncritical severity (CVSS 9.8)

Exploitability

Unlikely to be exploited — EPSS score 0.6%

Affected products (4)

4 pending

ProductAffected VersionsFix Status

PTC500SAll versionsNo fix yet

PTC115All versionsNo fix yet

PTC500+All versionsNo fix yet

PTC115+All versionsNo fix yet

Remediation & Mitigation

0/4

Do now

0/3

HOTFIXDownload and apply the firmware fix provided by AVer from the remediation link provided in the advisory

WORKAROUNDRestrict network access to PTC camera management ports to only authorized engineering and IT workstations using firewall rules

HARDENINGChange default credentials on all PTC cameras if present; confirm no default usernames/passwords are active

Long-term hardening

0/1

HARDENINGSegment PTC cameras onto a dedicated management VLAN separate from critical control systems and plant networks

CVEs (1)

CVE-2026-40624

View full CISA ICS-CERT advisory

↑↓ Navigate · Esc Close

API: /api/v1/advisories/10ff418d-4fcb-41b9-87d7-a215bf895a39

Get OT security insights every Tuesday

Advisory breakdowns, a weekly summary, and incident analyses for the people actually defending OT environments. Free, no account required.