CVE-2024-11120

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Nov 15, 2024
CWE ID 78

Summary

CVE-2024-11120 is a newly disclosed vulnerability affecting certain End-of-Life GeoVision devices. This issue permits unauthenticated remote attackers to inject and execute arbitrary system commands, posing a significant security risk. Notably, this vulnerability has already been exploited by attackers, making it a critical concern for organizations using the affected devices. The successful exploitation could lead to unauthorized access, data theft, or system damage. Immediate action is required to apply patches or workarounds to mitigate this threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share