Vulnerability Details CVE-2026-42370
A stack overflow vulnerability exists in the WebCam Server Login functionality of GeoVision GV-VMS V20 20.0.2. A specially crafted HTTP request can lead to an arbitrary code execution. An attacker can make an unauthenticated HTTP request to trigger this vulnerability.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 31.9%
CVSS Severity
CVSS v3 Score 9.0
References
Products affected by CVE-2026-42370
-
cpe:2.3:h:geovision:gv-vms:20
-
cpe:2.3:o:geovision:gv-vms_firmware:*