CVE Catalog

CVE-2026-42367

MediumCVSS 6.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.27%

19th percentile - higher than 19% of all known CVEs

Summary

A privilege escalation vulnerability exists in the Web Interface / ssi.cgi functionality of GeoVision LPC2011/LPC2211 version 1.10. A specially crafted HTTP request can lead to credentials leak.

Risk Assessment

An attacker can exploit this vulnerability to gain unauthorized access to user data, potentially leading to serious security breaches within the organization.

Recommendation

It is recommended to update the system to the latest version to mitigate this vulnerability and to monitor logs for potential attack attempts.

Original NVD description (English source)

A privilege escalation vulnerability exists in the Web Interface / ssi.cgi functionality of GeoVision LPC2011/LPC2211 1.10. A specially crafted HTTP request can lead to credentials leak. An attacker can visit a webpage to trigger this vulnerability.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS