CVE-2026-42368 - Vulnerability Analysis
CriticalCVSS: 9.9Last Updated: May 4, 2026
GeoVision LPC2011/LPC2211 - Privilege Escalation
Published: May 4, 2026Updated: May 4, 2026Remote Exploitable
Overview
GeoVision LPC2011/LPC2211 1.10 contains a privilege escalation caused by specially crafted HTTP request in Web Interface functionality, letting attackers execute privileged operations, exploit requires victim to visit a webpage.
Severity & Score
Severity: Critical
CVSS Score: 9.9
Impact
Attackers can execute privileged operations, potentially gaining elevated access on the system.
Mitigation
Update to the latest version.
References
Related Resources
Details
- CVE ID
- CVE-2026-42368
- Severity
- Critical
- CVSS Score
- 9.9
- Type
- broken_access_control
- Status
- new
CWE
- CWE-266
CVSS Metrics
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H