A critical stack-based buffer overflow in the GeoVision GV-I/O Box 4E allows unauthenticated remote attackers to execute arbitrary code with elevated privileges.

The vulnerability exists in the DVRSearch service, which listens on UDP port 10001. An unauthenticated attacker can trigger a stack overflow by sending a maliciously crafted UDP packet, leading to potential remote code execution.

With a CVSS score of 10.0, this vulnerability represents the highest level of risk. Successful exploitation grants an attacker full control over the affected smart embedded device, enabling them to pivot into the internal network, disrupt physical security operations, or use the device as a persistent foothold for further malicious activity.

Immediate Action: Patch the device to the latest firmware version provided by GeoVision as soon as it becomes available.

Proactive Monitoring: Inspect network traffic directed to UDP port 10001 for anomalous packet sizes or malformed payloads.

Compensating Controls: Restrict network access to the GV-I/O Box 4E by placing it behind a firewall and allowing traffic only from trusted, authorized management IP addresses.

Public Exploit Available: No

Given the critical nature of this flaw and the potential for complete device compromise, immediate action is required. Organizations should isolate the affected hardware from public-facing networks and apply vendor-supplied updates immediately upon release to mitigate the risk of unauthorized access.