Vulnerability Details CVE-2020-3931
Buffer overflow exists in Geovision Door Access Control device family, an unauthenticated remote attacker can execute arbitrary command.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.017
EPSS Ranking 81.6%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
- https://www.acronis.com/en-us/blog/posts/backdoor-wide-open-critical-vulnerabilities-uncovered-geovision
- https://www.twcert.org.tw/tw/cp-132-3754-b77d0-1.html
- https://www.acronis.com/en-us/blog/posts/backdoor-wide-open-critical-vulnerabilities-uncovered-geovision
- https://www.twcert.org.tw/tw/cp-132-3754-b77d0-1.html
Products affected by CVE-2020-3931
-
cpe:2.3:h:geovision:gv-as1010:-
-
cpe:2.3:h:geovision:gv-as210:-
-
cpe:2.3:h:geovision:gv-as410:-
-
cpe:2.3:h:geovision:gv-as810:-
-
cpe:2.3:h:geovision:gv-gf1921:-
-
cpe:2.3:h:geovision:gv-gf1922:-
-
cpe:2.3:o:geovision:gv-as1010_firmware:*
-
cpe:2.3:o:geovision:gv-as210_firmware:*
-
cpe:2.3:o:geovision:gv-as410_firmware:2.20
-
cpe:2.3:o:geovision:gv-as810_firmware:*
-
cpe:2.3:o:geovision:gv-gf1921_firmware:*
-
cpe:2.3:o:geovision:gv-gf1922_firmware:*