GeoVision GV-ADR2701 Improper Authentication
CVE-2023-3638

9.8CRITICAL

Key Information:

Vendor: Geovision
Status: Gv-adr2701
Vendor: CVE Published:; 19 July 2023

What is CVE-2023-3638?

The GeoVision GV-ADR2701 cameras are susceptible to a web application vulnerability that allows an attacker to manipulate the login response. By exploiting this flaw, unauthorized individuals could gain access to sensitive functionalities of the web application, potentially compromising the security and integrity of the system.

Affected Version(s)

GV-ADR2701 1.00_2017_12_15

References

https://www.cisa.gov/news-events/ics-advisories/icsa-23-1...

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 19, 2023
Vulnerability Reserved
Jul 12, 2023

Geovision

What is CVE-2023-3638?

Affected Version(s)

References

CVSS V3.1

Timeline