GeoVision GV-VMS Stack Overflow Vulnerability in WebCam Server Login Allowing Arbitrary Code Execution

Vulnerability

A stack overflow vulnerability has been identified in the WebCam Server Login feature of GeoVision GV-VMS version 20.0.2. This vulnerability allows for arbitrary code execution by sending a specially crafted HTTP request. The issue can be exploited by making an unauthenticated HTTP request to the vulnerable server.

Impact

Exploitation of this vulnerability could lead to arbitrary code execution on the affected system.

Added: May 4, 2026, 1:19 AM

Updated: May 4, 2026, 1:19 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

6.8

remediation

0.0

relevance

7.4

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

6.8

remediation

0.0

relevance

7.4

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

GeoVision GV-VMS Stack Overflow Vulnerability in WebCam Server Login Allowing Arbitrary Code Execution

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating