GHSA-pf4w-4444-q95vCriticalCVSS 9.8
An unauthenticated stack-based buffer overflow vulnerability exists in ssvr in GeoVision GV...
🔗 CVE IDs covered (1)
📋 Description
An unauthenticated stack-based buffer overflow vulnerability exists in ssvr in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerability is caused by insufficient bounds checking when parsing RTSP Digest authentication fields. A remote attacker may exploit this vulnerability by sending a crafted RTSP request containing overly long authentication data, resulting in memory corruption, denial of service, or potentially arbitrary code execution.