Vulnerability CVE-2024-6047


Published: 2024-06-17

Description:
Certain EOL GeoVision devices fail to properly filter user input for the specific functionality. Unauthenticated remote attackers can exploit this vulnerability to inject and execute arbitrary system commands on the device.

Type:

CWE-78

(Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') )

 References:
https://www.twcert.org.tw/tw/cp-132-7883-f5635-1.html
https://www.twcert.org.tw/en/cp-139-7884-c5a8b-2.html

Copyright 2026, cxsecurity.com

 

Back to Top