CVE-2026-42368

Published: Mag 04, 2026 Last Modified: Mag 04, 2026

ExploitDB:

Other exploit source:

Google Dorks:

CRITICAL 9,9

Source: 0df08a0e-a200-4957-9bb0-084f562506f9

Attack Vector: network

Attack Complexity: low

Privileges Required: low

User Interaction: none

Scope: changed

Confidentiality: high

Integrity: high

Availability: high

Description

AI Translation Available

A privilege escalation vulnerability exists in the Web Interface functionality of GeoVision LPC2011/LPC2211 1.10. A specially crafted HTTP request can lead to execute priviledged operation. An attacker can visit a webpage to trigger this vulnerability.

266

Incorrect Privilege Assignment

Draft

Abstraction: Base Structure: Simple

Common Consequences

Security Scopes Affected:

Access Control

Potential Impacts:

Gain Privileges Or Assume Identity

Applicable Platforms

All platforms may be affected

View CWE Details

https://talosintelligence.com/vulnerability_reports/

https://www.geovision.com.tw/cyber_security.php

CVE-2026-42368

Description

Incorrect Privilege Assignment

Common Consequences

Applicable Platforms

Iscriviti alla newsletter