GeoVision GV-SNVR0811 Directory Traversal Vulnerability
GeoVision GV-SNVR0811 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted GET request containing “dot dot” sequences (/../) to view arbitrary files on the system.
The GV-SNVR0811 is an H.264/H.265 Linux-embedded Standalone Network Video Recorder which records video files directly to the internal hard drive, supporting up to 8 channels of GV-IP Cameras for network surveillance.
Please check for updates at – http://www.geovision.com.tw/download/product/
Duncan is a technology professional with over 20 years experience of working in various IT roles. He has a interest in cyber security, and has a wide range of other skills in radio, electronics and telecommunications.