CVE-2026-57278

HIGH

GeoVision GeoWebPlayer Websocket Server connectInfo handler stack-based buffer overflow vulnerability

Title source: cna
STIX 2.1

Description

GeoWebPlayer (also called "Web Plugin" in the GV-VMS documentation and "WS Player" for VMS-Cloud) is an addon that can be installed with various GeoVision software (GV-VMS, GV-Cloud, ...). It creates a websocket server that expands the capabilities of the various web-interfaces provided by the GeoVision software and may be necessary for them to function properly. The Websocket server can accept various commands coming from localhost. One of them, `connectionInfo` is meant to provide the necessary details to connect to a camera. The handler associated with this command that we call`handle_connection_info` contains multiple instances of string copy that can overflow. The function `handle_connect_info` copies attacker-controlled JSON strings into fixed-size buffers using manual byte-by-byte loops that do not enforce length limits. #### Buffer Overflow in ip field

References (2)

Core 2
Core References
Vendor Advisory vendor-advisory
https://www.geovision.com.tw/cyber_security.php

Scores

CVSS v3 8.3
EPSS 0.0028
EPSS Percentile 19.8%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-120
Status published
Products (2)
GeoVision Inc./GeoWebPlayer V1.1.1.0
GeoVision Inc./GeoWebPlayer V1.1.3.0
Published Jul 02, 2026
Tracked Since Jul 02, 2026