CVE 8.6 HIGH

GeoVision LPC2011/LPC2211 Web Interface guessable session cookie vulnerability_CVE-2026-42365

May 3, 2026 invoker category_cve
8.6 / 10
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N

Description

A guessable session cookie vulnerability exists in the Web Interface functionality of GeoVision LPC2011/LPC2211 1.10. A specially crafted series of HTTP requests can lead to an authentication bypass. An attacker can bruteforce session cookies to trigger this vulnerability.

AI Analysis

Guessable session cookie vulnerability in Web Interface

Basic Information

ID CVE-2026-42365
Source GV
Published May 4, 2026 at 00:42

Affected Product

Vendor GeoVision Inc.
Product GV-LPC2011/LPC2211
Version 1.10
Affected Versions GeoVision Inc. GV-LPC2011/LPC2211 1.10

CWE Classification

CWE-341

AI Assessment

AI Score 8.6 / 10
AI Severity High
Vendor GeoVision Inc.
Product GV-LPC2011/LPC2211
Version 1.10

References

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.