top of page
perceptive_background_267k.jpg

A stack overflow vulnerability exists in the WebCam Server Login functionality of GeoVision GV-VMS V20 20.0.2. A specially crafted HTTP request can lead to an a…

Published:

3 May 2026 at 22:00:00

Alert date:

4 May 2026 at 02:02:31

Source:

nvd.nist.gov

Click to open the original link from this advisory

Web Technologies, Mobile & IoT, Critical Infrastructure

A critical stack overflow vulnerability (CVE-2026-42370) affects GeoVision GV-VMS V20 20.0.2 WebCam Server Login functionality. The vulnerability allows unauthenticated attackers to achieve arbitrary code execution through specially crafted HTTP requests. This represents a high-severity security issue as it requires no authentication and can lead to complete system compromise. The vulnerability exists in the login component of the video management system, making it particularly dangerous for organizations using GeoVision surveillance systems.

Technical details

Mitigation steps:

Affected products:

GeoVision GV-VMS V20

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2026-42370
https://talosintelligence.com/vulnerability_reports/
https://www.geovision.com.tw/cyber_security.php

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Disclaimer: Deze website toont informatie afkomstig van externe bronnen. Perceptive aanvaardt geen verantwoordelijkheid voor de inhoud, juistheid of volledigheid van deze informatie.

bottom of page