go to Content
:::

TWCERT/CC Taiwan Computer Emergency Response Team/Coordination Center

:::
Date:
Font-stze:

GeoVision Door Access Control Device - Buffer overflow vulnerability

TVN ID TVN-201912007
CVE ID CVE-2020-3931
CVSS 9.8 (Critical)
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Products GV-AS210 version prior to 2.21, GV-AS410 version prior to 2.21, GV-AS810 version prior to 2.21, GV-GF192x version prior to 1.10, and GV-AS1010 version prior to 1.32
Description Buffer overflow exists in Geovision Door Access Control device family, an unauthenticated remote attacker can execute arbitrary command
Solution Update to version 2.22 in GV-AS210, version 2.22 in GV-AS410, version 2.22 in GV-AS810, version 1.22 in GV-GF192x, version 1.33 in GV-AS1010
Credit Acronis
Public Date 2020-07-09

Links

  1. CVE-2020-3931
  2. Backdoor wide open: critical vulnerabilities uncovered in GeoVision
Top