Critical severity9.9NVD Advisory· Published May 4, 2026· Updated Jun 15, 2026
CVE-2026-42364
CVE-2026-42364
Description
An os command injection vulnerability exists in the DdnsSetting.cgi functionality of GeoVision LPC2011/LPC2211 1.10. A specially crafted DDNS configuration can lead to arbitrary command execution. An attacker can modify a configuration value to trigger this vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:o:geovision:gv-lpc2011_firmware:1.10:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:geovision:gv-lpc2011_firmware:1.10:*:*:*:*:*:*:*
- cpe:2.3:o:geovision:gv-lpc2211_firmware:1.10:*:*:*:*:*:*:*
- Range: = 1.10
Patches
Vulnerability mechanics
References
3- talosintelligence.com/vulnerability_reports/nvdThird Party Advisory
- www.geovision.com.tw/cyber_security.phpnvdVendor Advisory
- www.talosintelligence.com/vulnerability_reports/TALOS-2025-2326nvd
News mentions
0No linked articles in our index yet.