What is CVE-2026-12488?

CVE-2026-12488 is a medium-severity vulnerability in Geovision Inc., classified under Stack-based Buffer Overflow. CVSS score: 6.2/10. Published 2026-06-24.

How severe is CVE-2026-12488?

Medium severity. CVSS v3 base score is 6.2 out of 10.

Buffer overflow in Geovision Inc.

CVE-2026-12488

A memory corruption vulnerability exists in the GV-Cloud functionality of GeoVision GV-VMS V20 20.0.2. A specially crafted network request can lead to a denial of service. An attacker can impersonate the legitimate server to trigger thi…

Vulnerability class: Buffer Overflow

EPSS: 0.002 (9.6th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.2 (Medium). Vector: CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:C/C:L/I:N/A:H.

Affected products

Geovision Inc. — versions V20.0.2, V20.1.0.0

Weakness classification (CWE)

CWE-121 — Stack-based Buffer Overflow

References

0df08a0e-a200-4957-9bb0-084f562506f9 (vendor-advisory)
0df08a0e-a200-4957-9bb0-084f562506f9 (third-party-advisory)
af854a3a-2127-422b-91ae-364da2661108

Frequently asked questions

What is CVE-2026-12488?: CVE-2026-12488 is a medium-severity vulnerability in Geovision Inc., classified under Stack-based Buffer Overflow. CVSS score: 6.2/10. Published 2026-06-24.
How severe is CVE-2026-12488?: Medium severity. CVSS v3 base score is 6.2 out of 10.