{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-11120", "assignerOrgId": "cded6c7f-6ce5-4948-8f87-aa7a3bbb6b0e", "state": "PUBLISHED", "assignerShortName": "twcert", "dateReserved": "2024-11-12T06:23:33.571Z", "datePublished": "2024-11-15T02:00:27.361Z", "dateUpdated": "2024-11-15T19:39:22.203Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "GV-VS12", "vendor": "GeoVision", "versions": [{"status": "affected", "version": "0"}]}, {"defaultStatus": "unaffected", "product": "GV-VS11", "vendor": "GeoVision", "versions": [{"status": "affected", "version": "0"}]}, {"defaultStatus": "unaffected", "product": "GV-DSP_LPR_V3", "vendor": "GeoVision", "versions": [{"status": "affected", "version": "0"}]}, {"defaultStatus": "unaffected", "product": "GVLX 4 V2", "vendor": "GeoVision", "versions": [{"status": "affected", "version": "0"}]}, {"defaultStatus": "unaffected", "product": "GVLX 4 V3", "vendor": "GeoVision", "versions": [{"status": "affected", "version": "0"}]}], "datePublic": "2024-11-15T01:56:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Certain EOL GeoVision devices have an OS Command Injection vulnerability. Unauthenticated remote attackers can exploit this vulnerability to inject and execute arbitrary system commands on the device. Moreover, this vulnerability has already been exploited by attackers, and we have received related reports."}], "value": "Certain EOL GeoVision devices have an OS Command Injection vulnerability. Unauthenticated remote attackers can exploit this vulnerability to inject and execute arbitrary system commands on the device. Moreover, this vulnerability has already been exploited by attackers, and we have received related reports."}], "impacts": [{"capecId": "CAPEC-88", "descriptions": [{"lang": "en", "value": "CAPEC-88 OS Command Injection"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-78", "description": "CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "cded6c7f-6ce5-4948-8f87-aa7a3bbb6b0e", "shortName": "twcert", "dateUpdated": "2024-11-15T02:00:27.361Z"}, "references": [{"tags": ["third-party-advisory"], "url": "https://www.twcert.org.tw/tw/cp-132-8236-d4836-1.html"}, {"tags": ["third-party-advisory"], "url": "https://www.twcert.org.tw/en/cp-139-8237-26d7a-2.html"}], "solutions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "&nbsp; The affected devices are no longer being maintained. It is recommended to replace them.<br>"}], "value": "The affected devices are no longer being maintained. It is recommended to replace them."}], "source": {"advisory": "TVN-202411014", "discovery": "EXTERNAL"}, "tags": ["unsupported-when-assigned", "x_known-exploited-vulnerability"], "title": "GeoVision EOL devices - OS Command Injection", "x_generator": {"engine": "Vulnogram 0.2.0"}}, "adp": [{"affected": [{"vendor": "geovision", "product": "gv-vs12_firmware", "cpes": ["cpe:2.3:o:geovision:gv-vs12_firmware:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "*", "versionType": "custom"}]}, {"vendor": "geovision", "product": "gv-vs11_firmware", "cpes": ["cpe:2.3:o:geovision:gv-vs11_firmware:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "*", "versionType": "custom"}]}, {"vendor": "geovision", "product": "gv-dsp_lpr_v3_firmware", "cpes": ["cpe:2.3:o:geovision:gv-dsp_lpr_v3_firmware:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "*", "versionType": "custom"}]}, {"vendor": "geovision", "product": "gvlx_4_v2_firmware", "cpes": ["cpe:2.3:o:geovision:gvlx_4_v2_firmware:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "*", "versionType": "custom"}]}, {"vendor": "geovision", "product": "gvlx_4_v3_firmware", "cpes": ["cpe:2.3:o:geovision:gvlx_4_v3_firmware:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "*", "versionType": "custom"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-11-15T19:39:18.807399Z", "id": "CVE-2024-11120", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-11-15T19:39:22.203Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-11120", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2024-11-15T19:39:18.807399Z"}}}], "affected": [{"cpes": ["cpe:2.3:o:geovision:gv-vs12_firmware:*:*:*:*:*:*:*:*"], "vendor": "geovision", "product": "gv-vs12_firmware", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:o:geovision:gv-vs11_firmware:*:*:*:*:*:*:*:*"], "vendor": "geovision", "product": "gv-vs11_firmware", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:o:geovision:gv-dsp_lpr_v3_firmware:*:*:*:*:*:*:*:*"], "vendor": "geovision", "product": "gv-dsp_lpr_v3_firmware", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:o:geovision:gvlx_4_v2_firmware:*:*:*:*:*:*:*:*"], "vendor": "geovision", "product": "gvlx_4_v2_firmware", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:o:geovision:gvlx_4_v3_firmware:*:*:*:*:*:*:*:*"], "vendor": "geovision", "product": "gvlx_4_v3_firmware", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-11-15T19:39:06.804Z"}}], "cna": {"tags": ["unsupported-when-assigned", "x_known-exploited-vulnerability"], "title": "GeoVision EOL devices - OS Command Injection", "source": {"advisory": "TVN-202411014", "discovery": "EXTERNAL"}, "impacts": [{"capecId": "CAPEC-88", "descriptions": [{"lang": "en", "value": "CAPEC-88 OS Command Injection"}]}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "GeoVision", "product": "GV-VS12", "versions": [{"status": "affected", "version": "0"}], "defaultStatus": "unaffected"}, {"vendor": "GeoVision", "product": "GV-VS11", "versions": [{"status": "affected", "version": "0"}], "defaultStatus": "unaffected"}, {"vendor": "GeoVision", "product": "GV-DSP_LPR_V3", "versions": [{"status": "affected", "version": "0"}], "defaultStatus": "unaffected"}, {"vendor": "GeoVision", "product": "GVLX 4 V2", "versions": [{"status": "affected", "version": "0"}], "defaultStatus": "unaffected"}, {"vendor": "GeoVision", "product": "GVLX 4 V3", "versions": [{"status": "affected", "version": "0"}], "defaultStatus": "unaffected"}], "solutions": [{"lang": "en", "value": "The affected devices are no longer being maintained. It is recommended to replace them.", "supportingMedia": [{"type": "text/html", "value": "&nbsp; The affected devices are no longer being maintained. It is recommended to replace them.<br>", "base64": false}]}], "datePublic": "2024-11-15T01:56:00.000Z", "references": [{"url": "https://www.twcert.org.tw/tw/cp-132-8236-d4836-1.html", "tags": ["third-party-advisory"]}, {"url": "https://www.twcert.org.tw/en/cp-139-8237-26d7a-2.html", "tags": ["third-party-advisory"]}], "x_generator": {"engine": "Vulnogram 0.2.0"}, "descriptions": [{"lang": "en", "value": "Certain EOL GeoVision devices have an OS Command Injection vulnerability. Unauthenticated remote attackers can exploit this vulnerability to inject and execute arbitrary system commands on the device. Moreover, this vulnerability has already been exploited by attackers, and we have received related reports.", "supportingMedia": [{"type": "text/html", "value": "Certain EOL GeoVision devices have an OS Command Injection vulnerability. Unauthenticated remote attackers can exploit this vulnerability to inject and execute arbitrary system commands on the device. Moreover, this vulnerability has already been exploited by attackers, and we have received related reports.", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-78", "description": "CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')"}]}], "providerMetadata": {"orgId": "cded6c7f-6ce5-4948-8f87-aa7a3bbb6b0e", "shortName": "twcert", "dateUpdated": "2024-11-15T02:00:27.361Z"}}}, "cveMetadata": {"cveId": "CVE-2024-11120", "state": "PUBLISHED", "dateUpdated": "2024-11-15T19:39:22.203Z", "dateReserved": "2024-11-12T06:23:33.571Z", "assignerOrgId": "cded6c7f-6ce5-4948-8f87-aa7a3bbb6b0e", "datePublished": "2024-11-15T02:00:27.361Z", "assignerShortName": "twcert"}, "dataVersion": "5.1"}

{"cveTags": [{"sourceIdentifier": "twcert@cert.org.tw", "tags": ["unsupported-when-assigned"]}], "descriptions": [{"lang": "en", "value": "Certain EOL GeoVision devices have an OS Command Injection vulnerability. Unauthenticated remote attackers can exploit this vulnerability to inject and execute arbitrary system commands on the device. Moreover, this vulnerability has already been exploited by attackers, and we have received related reports."}, {"lang": "es", "value": "Algunos dispositivos GeoVision al final de su vida \u00fatil tienen una vulnerabilidad de inyecci\u00f3n de comandos del sistema operativo. Los atacantes remotos no autenticados pueden aprovechar esta vulnerabilidad para inyectar y ejecutar comandos arbitrarios del sistema en el dispositivo. Adem\u00e1s, esta vulnerabilidad ya ha sido explotada por atacantes y hemos recibido informes relacionados."}], "id": "CVE-2024-11120", "lastModified": "2024-11-15T13:58:08.913", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "twcert@cert.org.tw", "type": "Primary"}]}, "published": "2024-11-15T02:15:17.757", "references": [{"source": "twcert@cert.org.tw", "url": "https://www.twcert.org.tw/en/cp-139-8237-26d7a-2.html"}, {"source": "twcert@cert.org.tw", "url": "https://www.twcert.org.tw/tw/cp-132-8236-d4836-1.html"}], "sourceIdentifier": "twcert@cert.org.tw", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-78"}], "source": "twcert@cert.org.tw", "type": "Primary"}]}

{}