Vulnerability Details CVE-2026-42365
A guessable session cookie vulnerability exists in the Web Interface functionality of GeoVision LPC2011/LPC2211 1.10. A specially crafted series of HTTP requests can lead to an authentication bypas. An attacker can bruteforce session cookies to trigger this vulnerability.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 19.5%
CVSS Severity
CVSS v3 Score 8.6
References
Products affected by CVE-2026-42365
-
cpe:2.3:h:geovision:gv-lpc2011:-
-
cpe:2.3:h:geovision:gv-lpc2211:-
-
cpe:2.3:o:geovision:gv-lpc2011_firmware:1.10
-
cpe:2.3:o:geovision:gv-lpc2211_firmware:1.10