CNNVD-202601-2873 Information
Jan 16, 2026
cve
CNNVD ID
CNNVD-202601-2873
Related CVE
- CNNVD Published: 2026-01-16
Description (Chinese)
GeoVision GeoWebServer是中国奇偶(GeoVision)公司的一个Web监控管理平台。 GeoVision GeoWebServer 5.3.3版本存在路径遍历漏洞,该漏洞源于输入清理不当,可能导致本地文件包含、跨站脚本和远程代码执行。
Description (English)
GeoVision GeoWebServer is a Web monitoring and management platform for GeoVision. Version 5.3.3 of GeoVision GeoWebServer has a loophole in its path, which stems from inappropriate input clean-up and may lead to local file inclusion, cross-site scripts and remote code execution.
Hazard Level
High
Vulnerability Type
路径遍历
Affected Vendor
奇偶
Published
2026-01-16
Last Modified
2026-02-24
References
https://www.exploit-db.com/exploits/50211 https://www.geovision.com.tw/cyber_security.php https://www.vulncheck.com/advisories/geovision-geowebserver-local-file-inclusion
Patch
https://www.geovision.com.tw/download/product/
Share on: