CVE-2026-12488
MediumCVSS 6.2Exploitation Probability (EPSS)
Low risk10th percentile — higher than 10% of all known CVEs
Summary
A memory corruption vulnerability exists in the GV-Cloud functionality of GeoVision GV-VMS V20 20.0.2. A specially crafted network request can lead to a denial of service.
Risk Assessment
An attacker can impersonate the legitimate server, which may result in service disruption and operational interference for the organization.
Recommendation
It is recommended to update the software to the latest version and monitor network traffic for potential attacks.
Original NVD description (English source)
A memory corruption vulnerability exists in the GV-Cloud functionality of GeoVision GV-VMS V20 20.0.2. A specially crafted network request can lead to a denial of service. An attacker can impersonate the legitimate server to trigger this vulnerability.

