CVE-2018-25118 in GV-BX1500information

Résumé

par MITRE • 21/10/2025

GeoVision embedded IP devices, confirmed on GV-BX1500 and GV-MFD1501, contain a remote command injection vulnerability via /PictureCatch.cgi that enables an attacker to execute arbitrary commands on the device. VulnCheck has observed this vulnerability being exploited in the wild as of 2025-10-19 08:55:13.141502 UTC.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Responsable

VulnCheck

Réserver

20/10/2025

Divulgation

21/10/2025

Modérer

accepté

Entrée

VDB-329106

CPE

prêt

Exploitation

Télécharger

EPSS

0.01300

KEV

non

Activités

très faible

Sources

Do you want to use VulDB in your project?

Use the official API to access entries easily!