{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-04T04:40:36.293","vulnerabilities":[{"cve":{"id":"CVE-2024-11120","sourceIdentifier":"twcert@cert.org.tw","published":"2024-11-15T02:15:17.757","lastModified":"2025-10-30T20:09:53.680","vulnStatus":"Analyzed","cveTags":[{"sourceIdentifier":"twcert@cert.org.tw","tags":["unsupported-when-assigned"]}],"descriptions":[{"lang":"en","value":"Certain EOL GeoVision devices have an OS Command Injection vulnerability. Unauthenticated remote attackers can exploit this vulnerability to inject and execute arbitrary system commands on the device. Moreover, this vulnerability has already been exploited by attackers, and we have received related reports."},{"lang":"es","value":"Algunos dispositivos GeoVision al final de su vida útil tienen una vulnerabilidad de inyección de comandos del sistema operativo. Los atacantes remotos no autenticados pueden aprovechar esta vulnerabilidad para inyectar y ejecutar comandos arbitrarios del sistema en el dispositivo. Además, esta vulnerabilidad ya ha sido explotada por atacantes y hemos recibido informes relacionados."}],"metrics":{"cvssMetricV31":[{"source":"twcert@cert.org.tw","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"cisaExploitAdd":"2025-05-07","cisaActionDue":"2025-05-28","cisaRequiredAction":"Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.","cisaVulnerabilityName":"GeoVision Devices OS Command Injection Vulnerability","weaknesses":[{"source":"twcert@cert.org.tw","type":"Secondary","description":[{"lang":"en","value":"CWE-78"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:geovision:gv-vs12_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"0C78AF1F-A287-4282-84F4-E6087250EEFE"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:geovision:gv-vs12:-:*:*:*:*:*:*:*","matchCriteriaId":"5A129787-4673-4701-933C-BD5365B61A53"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:geovision:gv-vs11_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"EF1E4228-CE1E-4BAA-ADE8-F045B7A0B958"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:geovision:gv-vs11:-:*:*:*:*:*:*:*","matchCriteriaId":"42E883F3-769C-4266-B75C-98CCB217471C"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:geovision:gv-dsp_lpr_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"8A816357-E53E-45DB-8655-2168D9B81F9F"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:geovision:gv-dsp_lpr:3.0:*:*:*:*:*:*:*","matchCriteriaId":"43C96B07-009A-44F1-97A4-91A4EC11B8CA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:geovision:gvlx_4_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"F102B6E2-FF3F-4A1A-B133-E06567EE6653"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:geovision:gvlx_4:2.0:*:*:*:*:*:*:*","matchCriteriaId":"CC0F181D-09E9-43CF-93A5-DA699F4436C5"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:geovision:gvlx_4_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"F102B6E2-FF3F-4A1A-B133-E06567EE6653"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:geovision:gvlx_4:3.0:*:*:*:*:*:*:*","matchCriteriaId":"3699699F-80E7-44C8-8564-1448704BCCE0"}]}]}],"references":[{"url":"https://www.twcert.org.tw/en/cp-139-8237-26d7a-2.html","source":"twcert@cert.org.tw","tags":["Third Party Advisory"]},{"url":"https://www.twcert.org.tw/tw/cp-132-8236-d4836-1.html","source":"twcert@cert.org.tw","tags":["Third Party Advisory"]},{"url":"https://www.akamai.com/blog/security-research/active-exploitation-mirai-geovision-iot-botnet","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","tags":["Exploit","Third Party Advisory"]},{"url":"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-11120","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","tags":["US Government Resource"]}]}}]}