Hackers Exploit Zero-Day Flaw in EOL GeoVision Devices

Red | Vulnerability Report
Download PDF

CVE-2024-11120 is a critical OS command injection vulnerability in outdated GeoVision devices, allowing unauthenticated attackers to execute arbitrary commands remotely. Actively exploited in the wild, it has been used by botnets, such as Mirai, for DDoS and cryptomining. With no patches available, users are advised to isolate or replace the devices urgently.

What’s new on HivePro

Get through updates and upcoming events, and more directly in your inbox