Approved changes feed: RSS · Atom

cpe:2.3:a:geovision_inc.:gv-mfd1501:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorGeovision Inc. (1f9b8475-73fe-5d5d-9d88-a1e8ba8ee9f7)
ProductGv Mfd1501 (20159287-7bc4-5281-9d94-2065665c762b)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2018-25118 vulnerable 2026-06-08 05:11:29.418528 GeoVision Command Injection RCE via /PictureCatch.cgi
GeoVision embedded IP devices, confirmed on GV-BX1500 and GV-MFD1501, contain a remote command injection vulnerability via /PictureCatch.cgi that enables an attacker to execute arbitrary commands on the device. The vulnerable models have been declared end-of-life (EOL) by the vendor. VulnCheck has observed this vulnerability being exploited in the wild as of 2025-10-19 08:55:13.141502 UTC.
Published: 2025-10-20T21:14:41.304Z
Updated: 2026-04-07T14:03:45.809Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.