{"uuid": "ddf8ab2e-b2ef-482e-8d55-07bac60d2298", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11120", "type": "exploited", "source": "https://t.me/DarkWebInformer_CVEAlerts/15251", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-11120\n\ud83d\udd25 CVSS Score: 9.8 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: Certain EOL GeoVision devices have an OS Command Injection vulnerability. Unauthenticated remote attackers can exploit this vulnerability to inject and execute arbitrary system commands on the device. Moreover, this vulnerability has already been exploited by attackers, and we have received related reports.\n\ud83d\udccf Published: 2024-11-15T02:00:27.361Z\n\ud83d\udccf Modified: 2025-05-07T03:56:06.537Z\n\ud83d\udd17 References:\n1. https://www.twcert.org.tw/tw/cp-132-8236-d4836-1.html\n2. https://www.twcert.org.tw/en/cp-139-8237-26d7a-2.html", "creation_timestamp": "2025-05-07T04:21:36.000000Z"}