CVE-2024-11120 is a critical OS command injection vulnerability in outdated GeoVision devices, allowing unauthenticated attackers to execute arbitrary commands remotely. Actively exploited in the wild, it has been used by botnets, such as Mirai, for DDoS and cryptomining. With no patches available, users are advised to isolate or replace the devices urgently.
What’s new on HivePro
Get through updates and upcoming events, and more directly in your inbox