CVE Tools
Sign in

CVE-2026-7161

GeoVision GV-IP Device Utility Device Authentication insufficient encryption vulnerability

Published: May 4, 2026Updated: Jun 15, 2026 Sources: CVE List NVDCWE-656
NVD MITRE
9.3CVSSCRITICAL
EPSS Score
0.2%
Top 88.5%
CISA KEV
Not in KEV
Exploits
No Known Exploits
Remediation
Patch Available

Description

An insufficient encryption vulnerability exists in the Device Authentication functionality of GeoVision GV-IP Device Utility 9.0.5. Listening to broadcast packets can lead to credentials leak. An attacker can listen to broadcast messages to trigger this vulnerability. When interacting with various Geovision devices on the network, the utility may send privileged commands; in order to do so, the username and password of the device need to be provided. In some instances the command is broadcasted over UDP and the username/password are encrypted using a cryptographic protocol that appears to be derivated from Blowfish. However the symmetric key used for the encryption is also included in the packet, and thus the security of the username/password only relies on the "obscurity" of the encryption scheme. An attacker on the same LAN can listen to the broadcast traffic once an admin user interacts with the device, and decrypt the credentials using their own implementation of the algorithm. With this password the attacker would have full control over the device configuration, allowing them to change its ip address or even reset it to factory default.

CVSS Vector Breakdown

AV:NAC:LPR:NUI:RS:CC:HI:NA:H
Exploitability
AV:NAttack Vector
Network
AC:LAttack Complexity
Low
PR:NPrivileges Required
None
UI:RUser Interaction
Required
Scope
S:CScope
Changed
Impact
C:HConfidentiality
High
I:NIntegrity
None
A:HAvailability
High
Open in CVSS calculator →

Weaknesses

CWE-656

Affected Products

GV-IP Device UtilityGeoVision Inc.
On-prem
ICS / OT / IoT / ip-camera-nvr
gv-ip device utilitygeovision
Embedded
ICS / OT / IoT / ip-camera-nvr
geovision inc.commercialICS / OT / IoTaka geovision
geovisioncommercialICS / OT / IoT

Exploitability

Official Patch Available

References

https://www.geovision.com.tw/cyber_security.php
geovision.com.tw
https://talosintelligence.com/vulnerability_reports/
talosintelligence.com
https://www.talosintelligence.com/vulnerability_reports/TALOS-2025-2322
talosintelligence.com

Timeline

Published
May 4, 2026
Last Updated
Jun 15, 2026

Unlock Complete Vulnerability Intelligence

Get the full picture for CVE-2026-7161 and every CVE in our database. Create a free account — no credit card required.

Create Free Account
Plain-language analysis
Impact assessment and exploitation scenario in plain English
Attack graph visualization
Interactive attack path and kill chain mapping
Exploit details & PoC links
ExploitDB, Metasploit, GitHub PoCs with direct links
Nuclei scanner templates
Ready-to-use vulnerability scanner templates
Full remediation guide
Patch instructions, workarounds, and compliance impact
Interactive AI chat
Ask questions about this vulnerability in natural language
Related vulnerabilities
Semantically similar CVEs and attack patterns
REST API & MCP access
Integrate vulnerability data into your workflows