CVE-2024-11120 is a rising vulnerability affecting widely deployed GeoVision devices, thus representing a significant concern for organizations. Reports confirm active exploitation by attackers, highlighting the critical risks posed by unsupported devices and underscoring the urgent need for mitigation measures to prevent system compromises.
| Product | GeoVision |
| Date | 2024-11-22 11:19:41 |
| Information |
|
Technical Summary
This vulnerability allows attackers to exploit affected devices to execute arbitrary commands remotely. Impacted devices include:
- GV-VS12
- GV-VS11
- GV-DSPLPRV3
- GVLX 4 V2
- GVLX 4 V3
Risks include unauthorized access, data breaches, and system control, threatening confidentiality, integrity, and availability.
Recommendations
Vulnerable devices should not be exposed to an interface accessible from the Internet. Organizations are strongly advised to replace these devices with newer, supported alternatives to effectively mitigate risks.
[Callforaction-THREAT-Footer]
