Unrated severityCISA KEVNVD Advisory· Published Jun 17, 2024· Updated Oct 21, 2025
GeoVision EOL device - OS Command Injection
CVE-2024-6047
Description
Certain EOL GeoVision devices fail to properly filter user input for the specific functionality. Unauthenticated remote attackers can exploit this vulnerability to inject and execute arbitrary system commands on the device.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
20- GeoVision/GV_DSP_LPR_V2v5Range: all
- GeoVision/GV_GM8186_VS14v5Range: all
- GeoVision/GV_IPCAMD_GV_BX130v5Range: all
- GeoVision/GV_IPCAMD_GV_CB220v5Range: all
- GeoVision/GV_IPCAMD_GV_EBL1100v5Range: all
- GeoVision/GV_IPCAMD_GV_EFD1100v5Range: all
- GeoVision/GV_IPCAMD_GV_FD2410v5Range: all
- GeoVision/GV_IPCAMD_GV_FD3400v5Range: all
- GeoVision/GV_IPCAMD_GV_FE3401v5Range: all
- GeoVision/GV_IPCAMD_GV_FE420v5Range: all
- GeoVision/GVLX 4 V2v5Range: all
- GeoVision/GVLX 4 V3v5Range: all
- GeoVision/GV_VS03v5Range: all
- GeoVision/GV VS04Av5Range: all
- GeoVision/GV VS04Hv5Range: all
- GeoVision/GV-VS14_VS14v5Range: all
- GeoVision/GV_VS216XXv5Range: all
- GeoVision/GV_VS2410v5Range: all
- GeoVision/GV_VS28XXv5Range: all
Patches
Vulnerability mechanics
References
2- www.twcert.org.tw/en/cp-139-7884-c5a8b-2.htmlmitrethird-party-advisory
- www.twcert.org.tw/tw/cp-132-7883-f5635-1.htmlmitrethird-party-advisory
News mentions
0No linked articles in our index yet.