CVE-2025-26264 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

GeoVision GV-ASWeb with the version 6.1.2.0 or less (fixed in 6.2.0), contains a Remote Code Execution (RCE) vulnerability within its Notification Settings feat…
High CVSS: 8.8

CVE-2025-26264

GeoVision GV-ASWeb with the version 6.1.2.0 or less (fixed in 6.2.0), contains a Remote Code Execution (RCE) vulnerability within its Notification Settings feature. An authenticated attacker with "System Settings" privileges in ASWeb can exploit this flaw to execute arbitrary commands on the server, leading to a full system compromise.
Vendor
-
Product
-
CWE
CWE-94
Yayın Tarihi
2025-02-27 22:15:38
Güncelleme
2025-03-19 14:15:39
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-94 HIGH 2025

Referanslar

https://github.com/DRAGOWN/CVE-2025-26264 https://www.geovision.com.tw/download/product/GV-ASManager%20%28Access%20Control%29 https://github.com/DRAGOWN/CVE-2025-26264