HarborGuard / CVE
Back to search
CRITICALCVE-2026-42370Published Modified CNA GV

CVE-2026-42370: GeoVision GV-VMS V20 WebCam Server Login stack overflow vulnerability

A stack overflow vulnerability exists in the WebCam Server Login functionality of GeoVision GV-VMS V20 20.0.2. A specially crafted HTTP request can lead to an arbitrary code execution. An attacker can make an unauthenticated HTTP request to trigger this vulnerability.

Metrics

CVSS v3.1
9.0
Severity
CRITICAL
Fixed in
20.0.2.10
Affected Products
1

Fix available

20.0.2.1020.1.0
Affected packages
  • GeoVision Inc. / GV-VMS V20.0.2
    20.0.2
    Fixed in 20.0.2.10, 20.1.0
CVSS Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
References