Skip to main content

GeoVision GV-LPC CVE-2026-57879

| EUVDEUVD-2026-39635 CRITICAL
Stack-based Buffer Overflow (CWE-121)
2026-06-26 GV GHSA-mm39-vhxr-6hjg
9.8
CVSS 3.1 · Vendor: GV
Share

Severity by source

Vendor (GV) PRIMARY
9.8 CRITICAL
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
vuln.today AI
9.8 CRITICAL

Pre-auth RTSP parsing reachable over the network with low complexity and no interaction (AV:N/AC:L/PR:N/UI:N); memory corruption enabling potential RCE justifies C:H/I:H/A:H.

3.1 AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
4.0 AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Primary rating from Vendor (GV).

CVSS VectorVendor: GV

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

1
Analysis Generated
Jun 26, 2026 - 08:19 vuln.today

DescriptionCVE.org

An unauthenticated stack-based buffer overflow vulnerability exists in ssvr in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerability is caused by insufficient bounds checking when processing RTSP custom authentication data. A remote attacker may exploit this vulnerability by sending a crafted RTSP request, resulting in memory corruption, denial of service, or potentially arbitrary code execution.

AnalysisAI

Remote code execution and denial of service in GeoVision GV-LPC2011 and GV-LPC2211 license-plate-recognition cameras (V1.12 and earlier) arise from a stack-based buffer overflow in the ssvr component's RTSP custom authentication handling. The CVSS vector (AV:N/AC:L/PR:N/UI:N) indicates an unauthenticated remote attacker can trigger memory corruption with a single crafted RTSP request, yielding crash-level DoS and potential arbitrary code execution. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Reach camera RTSP service (TCP/554)
Delivery
Send crafted RTSP auth request
Exploit
Overflow stack buffer in ssvr
Execution
Corrupt saved return address
Persist
Crash service or execute code
Impact
Loss of surveillance / device control

Vulnerability AssessmentAI

Exploitation Exploitation requires network reach to the ssvr RTSP service (default RTSP TCP/554) on a GV-LPC2011 or GV-LPC2211 running V1.12 or earlier; the trigger is a crafted RTSP request containing oversized RTSP custom authentication data. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The signals are largely aligned toward high priority: CVSS 9.8 with AV:N/AC:L/PR:N/UI:N means network-reachable, low-complexity, unauthenticated exploitation, and the buffer-overflow class supports both reliable DoS and plausible RCE. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker who can reach the camera's RTSP port crafts an RTSP request with an overlong custom authentication field and sends it to ssvr, overflowing a stack buffer and corrupting memory. The immediate result is a camera crash (loss of surveillance coverage); with sufficient effort and favorable embedded-platform conditions, the same overflow could be developed into arbitrary code execution on the device. …
Remediation Upgrade the GV-LPC2011/GV-LPC2211 firmware to a release newer than V1.12 once GeoVision publishes a fixed build; check the vendor security page at https://www.geovision.com.tw/cyber_security.php for the patched version, as no exact fix version is confirmed in the available data. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Conduct inventory of all GeoVision GV-LPC2011 and GV-LPC2211 devices in your environment and determine network exposure. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-57879 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy