Stack-Based Buffer Overflow Vulnerability in GeoVision Products
CVE-2026-57879

9.8CRITICAL

Key Information:

Vendor: Geovision Inc.
Status: Gv-lpclpc2011/2211
Vendor: CVE Published:; 26 June 2026

🔔 Create Geovision Inc. Vulnerability Alert

What is CVE-2026-57879?

A stack-based buffer overflow vulnerability has been identified in GeoVision's ssvr for the GV-LPC2011 and GV-LPC2211 models, versions V1.12 and earlier. This vulnerability arises from inadequate bounds checking while handling RTSP custom authentication data. A remote attacker could exploit this flaw by crafting a specific RTSP request, leading to potential memory corruption, service disruptions, or the possibility of arbitrary code execution.

Affected Version(s)

GV-LPCLPC2011/2211 Linux 1.12

GV-LPCLPC2011/2211 Linux 1.13

References

https://www.geovision.com.tw/cyber_security.php

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 26, 2026
Vulnerability Reserved
Jun 26, 2026

Credit

Jincheng Wang (@winmt), Professor Le Yu of Nanjing University of Posts and Telecommunications, and Professor Xiapu Luo of The Hong Kong Polytechnic University has reported:

CVE-2026-57879 Data

JSON