CVE-2024-11120
CVSS 3.1 Score 9.8 of 10 (high)
Details
Published Nov 15, 2024
CWE ID 78
Summary
CVE-2024-11120 is a newly disclosed vulnerability affecting certain End-of-Life GeoVision devices. This issue permits unauthenticated remote attackers to inject and execute arbitrary system commands, posing a significant security risk. Notably, this vulnerability has already been exploited by attackers, making it a critical concern for organizations using the affected devices. The successful exploitation could lead to unauthorized access, data theft, or system damage. Immediate action is required to apply patches or workarounds to mitigate this threat.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share