Gv-lpc2011 CVEs and Security Vulnerabilities

Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (6 CVEs found)

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2026-42367	2 Geovision, Geovision Inc.	5 Gv-lpc2011, Gv-lpc2011 Firmware, Gv-lpc2211 and 2 more	2026-05-05	6.5 Medium
A privilege escalation vulnerability exists in the Web Interface / ssi.cgi functionality of GeoVision LPC2011/LPC2211 1.10. A specially crafted HTTP request can lead to credentials leak. An attacker can visit a webpage to trigger this vulnerability.
CVE-2026-42365	2 Geovision, Geovision Inc.	5 Gv-lpc2011, Gv-lpc2011 Firmware, Gv-lpc2211 and 2 more	2026-05-05	8.6 High
A guessable session cookie vulnerability exists in the Web Interface functionality of GeoVision LPC2011/LPC2211 1.10. A specially crafted series of HTTP requests can lead to an authentication bypas. An attacker can bruteforce session cookies to trigger this vulnerability.
CVE-2026-42366	2 Geovision, Geovision Inc.	5 Gv-lpc2011, Gv-lpc2011 Firmware, Gv-lpc2211 and 2 more	2026-05-05	7.4 High
Multiple reflected cross-site scripting (xss) vulnerabilities exist in the Web Interface / ssi.cgi functionality of GeoVision LPC2011/LPC2211 1.10. A specially crafted malicious url can lead to an arbitrary javascript code execution. An attacker can provide a crafted URL to trigger this vulnerability.
CVE-2026-42368	2 Geovision, Geovision Inc.	5 Gv-lpc2011, Gv-lpc2011 Firmware, Gv-lpc2211 and 2 more	2026-05-05	9.9 Critical
A privilege escalation vulnerability exists in the Web Interface functionality of GeoVision LPC2011/LPC2211 1.10. A specially crafted HTTP request can lead to execute priviledged operation. An attacker can visit a webpage to trigger this vulnerability.
CVE-2026-7371	2 Geovision, Geovision Inc.	5 Gv-lpc2011, Gv-lpc2011 Firmware, Gv-lpc2211 and 2 more	2026-05-05	7.4 High
Multiple reflected cross-site scripting (xss) vulnerabilities exist in the Web Interface / ssi.cgi functionality of GeoVision LPC2011/LPC2211 1.10. A specially crafted malicious url can lead to an arbitrary javascript code execution. An attacker can provide a crafted URL to trigger this vulnerability. Reflected XXS via the error message for requesting non-existing page.
CVE-2026-42364	2 Geovision, Geovision Inc.	3 Gv-lpc2011, Gv-lpc2211, Gv-lpc2011 Lpc2211	2026-05-04	9.9 Critical
An os command injection vulnerability exists in the DdnsSetting.cgi functionality of GeoVision LPC2011/LPC2211 1.10. A specially crafted DDNS configuration can lead to arbitrary command execution. An attacker can modify a configuration value to trigger this vulnerability.

Page 1 of 1.