Unrated severityCISA KEVNVD Advisory· Published Jun 17, 2024· Updated Oct 21, 2025
GeoVision EOL device - OS Command Injection
CVE-2024-6047
Description
Certain EOL GeoVision devices fail to properly filter user input for the specific functionality. Unauthenticated remote attackers can exploit this vulnerability to inject and execute arbitrary system commands on the device.
Affected products
20- GeoVision/GV_DSP_LPR_V2v5Range: all
- GeoVision/GV_IPCAMD_GV_BX1500v5Range: all
- GeoVision/GV_IPCAMD_GV_CB220v5Range: all
- GeoVision/GV_IPCAMD_GV_EBL1100v5Range: all
- GeoVision/GV_IPCAMD_GV_EFD1100v5Range: all
- GeoVision/GV_IPCAMD_GV_FD2410v5Range: all
- GeoVision/GV_IPCAMD_GV_FD3400v5Range: all
- GeoVision/GV_IPCAMD_GV_FE3401v5Range: all
- GeoVision/GV_IPCAMD_GV_FE420v5Range: all
- GeoVision/GV-VS14_VS14v5Range: all
- GeoVision/GV_VS03v5Range: all
- GeoVision/GV_VS2410v5Range: all
- GeoVision/GV_VS28XXv5Range: all
- GeoVision/GV_VS216XXv5Range: all
- GeoVision/GV VS04Av5Range: all
- GeoVision/GV VS04Hv5Range: all
- GeoVision/GVLX 4 V2v5Range: all
- GeoVision/GVLX 4 V3v5Range: all
- GeoVision/GV_IPCAMD_GV_BX130v5Range: all
- GeoVision/GV_GM8186_VS14v5Range: all
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- www.twcert.org.tw/en/cp-139-7884-c5a8b-2.htmlmitrethird-party-advisory
- www.twcert.org.tw/tw/cp-132-7883-f5635-1.htmlmitrethird-party-advisory
News mentions
0No linked articles in our index yet.