CVE-2026-12847
Received Received - Intake
Stack Overflow in GV-I/O Box 4E DVRSearch Service

Publication date: 2026-06-24

Last updated on: 2026-06-24

Assigner: 0df08a0e-a200-4957-9bb0-084f562506f9

Description
GV-I/O Box 4E is a smart embedded device with 4 input and 4 relays output that can be controlled over Ethernet and RS-485. DVRSearch is a service running by default on the IOBox listening for UDP messages on port 10001. Any user on the network can send messages to this service and interact with it. Upon receiving a UDP message, the server reads at most 1460 bytes into a local buffer and a pointer to the buffer is stored in a global variable: #### Gateway field stack overflow The following code is vulnerable to a stack overflow that is attacker-controlled: v7 = strlen(g_network_config->gateway); memcpy(&reply_buf[216], g_network_config->gateway, v7);
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-24
Last Modified
2026-06-24
Generated
2026-06-24
AI Q&A
2026-06-24
EPSS Evaluated
N/A
NVD
CVE-2026-12847
EUVD
EUVD-2026-38648
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
geovision gv-i/o_box_4e From 2.09 (inc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-121 A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability exists in the GV-I/O Box 4E, a smart embedded device controlled over Ethernet and RS-485. The device runs a service called DVRSearch that listens for UDP messages on port 10001. Any user on the network can send messages to this service.

The vulnerability is a stack overflow caused by unsafe handling of the 'gateway' field in the network configuration. Specifically, the code copies the gateway string into a fixed-size buffer without proper bounds checking, allowing an attacker to overflow the stack with controlled data.

Impact Analysis

This vulnerability has a critical impact with a CVSS score of 10.0, meaning it can be exploited remotely without any privileges or user interaction.

An attacker can send specially crafted UDP messages to the DVRSearch service to trigger the stack overflow, potentially leading to complete compromise of the device.

  • Confidentiality: High impact, attacker can gain unauthorized access to sensitive data.
  • Integrity: High impact, attacker can alter device behavior or data.
  • Availability: High impact, attacker can cause device crashes or denial of service.
Detection Guidance

This vulnerability involves the DVRSearch service listening on UDP port 10001 on the GV-I/O Box 4E device. Detection can focus on identifying this service and monitoring for suspicious UDP traffic on port 10001.

  • Use network scanning tools to detect devices with UDP port 10001 open, for example: `nmap -sU -p 10001 <target-ip>`
  • Monitor network traffic for unusual or unexpected UDP messages sent to port 10001 using tools like tcpdump or Wireshark, e.g.: `tcpdump -i <interface> udp port 10001`
  • On the device, check for the presence of the DVRSearch service running and listening on UDP port 10001.
Mitigation Strategies

Immediate mitigation steps include restricting access to the DVRSearch service to trusted users only, as the vulnerability allows any user on the network to send messages to it.

  • Block or filter UDP traffic on port 10001 at network boundaries or firewalls to prevent unauthorized access.
  • Isolate the GV-I/O Box 4E device on a separate network segment or VLAN to limit exposure.
  • Disable or stop the DVRSearch service if it is not required.

Since the vulnerability is a stack overflow triggered by attacker-controlled input, applying any available patches or updates from the vendor should be prioritized once available.

Compliance Impact

The vulnerability in the GeoVision GV-I/O Box 4E, which allows for a critical stack-based buffer overflow leading to potential full system compromise, poses significant risks to confidentiality, integrity, and availability of data. Such risks can directly impact compliance with common standards and regulations like GDPR and HIPAA, which mandate strict protections for personal and sensitive data.

GeoVision maintains a comprehensive cybersecurity policy and vulnerability management process that includes prompt identification, disclosure, and remediation of critical vulnerabilities. This structured approach supports compliance efforts by ensuring that security flaws are addressed quickly to minimize exposure and potential data breaches.

However, the presence of a critical vulnerability with a CVSS score of 10.0 indicates that until patched, affected devices may not meet the security requirements of these regulations, potentially leading to non-compliance if sensitive data is compromised.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-12847. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart