Impact
The DVRSearch service on the GeoVision GV‑I/O Box 4E processes inbound UDP packets on port 10001 and copies up to 1460 bytes of payload into a local stack buffer. An unchecked memcpy writes the supplied IP address string beyond the allocated space, causing a classic stack buffer overflow (CWE‑121). An attacker who can send crafted packets can corrupt control flow and achieve arbitrary code execution on the device.
Affected Systems
The affected product is GeoVision Inc.’s GV‑I/O Box 4E running firmware versions 2.09 and 2.12 on a Linux kernel. The device is a network‑connected smart relay with 4 inputs and 4 outputs managed over Ethernet and RS-485, and the vulnerability is triggered by any user on the local network that can reach UDP port 10001.
Risk and Exploitability
The CVSS score of 10 classifies this flaw as critical; the EPSS score is not published, and the vulnerability is not listed in CISA KEV. Because the service is exposed on an unprotected UDP port and the overflow occurs without authentication, a local‑network attacker can easily send crafted packets to exploit the stack corruption. Successful exploitation would allow arbitrary code execution, compromising device configuration, integrity, and availability.
OpenCVE Enrichment