CVE-2024-6047: GeoVision EOL device - OS Command Injection

9.8 CVSS

Description

Certain EOL GeoVision devices fail to properly filter user input for the specific functionality. Unauthenticated remote attackers can exploit this vulnerability to inject and execute arbitrary system commands on the device.

Known Exploited

🚨 Marked as known exploited on May 7th, 2025 (30 days ago).

Classification

CVE ID: CVE-2024-6047

CVSS Base Severity: CRITICAL

CVSS Base Score: 9.8

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Problem Types

CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

Affected Products

Vendor: GeoVision

Product: GV_DSP_LPR_V2, GV_IPCAMD_GV_BX1500, GV_IPCAMD_GV_CB220, GV_IPCAMD_GV_EBL1100, GV_IPCAMD_GV_EFD1100, GV_IPCAMD_GV_FD2410, GV_IPCAMD_GV_FD3400, GV_IPCAMD_GV_FE3401, GV_IPCAMD_GV_FE420, GV-VS14_VS14, GV_VS03, GV_VS2410, GV_VS28XX, GV_VS216XX, GV VS04A, GV VS04H, GVLX 4 V2, GVLX 4 V3, GV_IPCAMD_GV_BX130, GV_GM8186_VS14

Exploit Prediction Scoring System (EPSS)

EPSS Score: 75.4% (probability of being exploited)

EPSS Percentile: 98.81% (scored less or equal to compared to others)

EPSS Date: 2025-06-04 (when was this score calculated)

Stakeholder-Specific Vulnerability Categorization (SSVC)

SSVC Exploitation: active

SSVC Technical Impact: total

SSVC Automatable: true

References

https://nvd.nist.gov/vuln/detail/CVE-2024-6047
https://www.twcert.org.tw/tw/cp-132-7883-f5635-1.html
https://www.twcert.org.tw/en/cp-139-7884-c5a8b-2.html

Timeline

2025-05-07 04:40:18 UTC
CVE

GeoVision EOL device - OS Command Injection
2025-05-07 04:41:18 UTC
🚨 Marked as Known Exploited
2025-05-07 17:15:16 UTC
CISA KEV

GeoVision Devices OS Command Injection Vulnerability
2025-05-07 18:45:23 UTC
All CISA Advisories

CISA Adds Two Known Exploited Vulnerabilities to Catalog