CVE-2026-42364 | GeoVision GV-LPC2011/LPC2211 up to 1.10 DDNS DdnsSetting.cgi os command injection

Inserito da Angelo Barbosa | Mag 4, 2026 | CVE

A vulnerability marked as critical has been reported in GeoVision GV-LPC2011 and LPC2211 up to 1.10. Affected is an unknown function of the file DdnsSetting.cgi of the component DDNS Handler. This manipulation causes os command injection.

This vulnerability is handled as CVE-2026-42364. The attack can be initiated remotely. There is not any exploit available.

It is suggested to upgrade the affected component.

CVE-2026-42364 | GeoVision GV-LPC2011/LPC2211 up to 1.10 DDNS DdnsSetting.cgi os command injection

Post correlati

CVE-2026-28087 | ThemeREX Filmax Plugin up to 1.1.11 on WordPress filename control

CVE-2024-25458 | CYCZCAM SHIX ZHAO SHIXCAM A9 48B_BC01_v87_0903 UDP Port information disclosure

CVE-2023-52557 | OpenBSD up to 7.3 npppd buffer size

CVE-2025-49007 | rack up to 3.1.15 Content-Disposition Parsing allocation of resources (GHSA-47m2-26rw-j2jw)