CVE-2025-26263

MEDIUM

GeoVision ASManager <6.2.0 - Info Disclosure

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2025-26263. PoCs published by Giorgi Dograshvili, DRAGOWN.

AI-analyzed exploit summary This is a writeup describing a credentials disclosure vulnerability in GeoVision ASManager Windows Application 6.1.2.0 or less. The vulnerability allows high-privilege attackers to dump credentials from the ASManagerService.exe process memory, leading to unauthorized access and control over security management systems.

Description

GeoVision ASManager Windows desktop application with the version 6.1.2.0 or less (fixed in 6.2.0), is vulnerable to credentials disclosure due to improper memory handling in the ASManagerService.exe process.

Exploits (2)

exploitdb WRITEUP

by Giorgi Dograshvili · textlocalwindows

https://www.exploit-db.com/exploits/52423

View Code ZIP pw:eip

This is a writeup describing a credentials disclosure vulnerability in GeoVision ASManager Windows Application 6.1.2.0 or less. The vulnerability allows high-privilege attackers to dump credentials from the ASManagerService.exe process memory, leading to unauthorized access and control over security management systems.

Classification

Writeup 90%

Attack Type

Info Leak

Complexity

Moderate

Reliability

Reliable

Target: GeoVision ASManager Windows Application 6.1.2.0 or less

Auth required

Prerequisites: System level access to the GV-ASManager application · High privilege account to dump memory

MITRE ATT&CK

T1003 - OS Credential Dumping T1552 - Unsecured Credentials

devstral-2 · analyzed Feb 16, 2026 Full analysis →

nomisec WRITEUP 6 stars

by DRAGOWN · poc

https://github.com/DRAGOWN/CVE-2025-26263

View Code ZIP pw:eip

This repository documents CVE-2025-26263, a credential disclosure vulnerability in GeoVision ASManager due to improper memory handling. It describes methods to dump credentials from memory, including triggering memory allocation via the 'Forget Password?' function.

Classification

Writeup 90%

Attack Type

Info Leak

Complexity

Moderate

Reliability

Reliable

Target: GeoVision ASManager Windows desktop application v6.1.2.0 or less

No auth needed

Prerequisites: System level access to the target machine · High privilege account to dump memory

MITRE ATT&CK

T1003 - OS Credential Dumping T1552 - Unsecured Credentials

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Various Sources

https://github.com/DRAGOWN/CVE-2025-26263

Various Sources

https://www.geovision.com.tw/download/product/GV-ASManager

Various Sources

https://www.geovision.com.tw/download/product/GV-ASManager%20%28Access%20Control%29

Scores

CVSS v3 5.1

EPSS 0.0027

EPSS Percentile 50.4%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact partial

Details

CWE

CWE-200

Status published

Published Feb 28, 2025

Tracked Since Feb 18, 2026