An unauthenticated stack-based buffer overflow in the RTSP handling of GeoVision GV-LPC2011/2211 poses a critical risk of remote code execution or system failure.

This flaw exists in the ssvr service and is caused by insufficient bounds checking when processing custom RTSP authentication data. An unauthenticated attacker can trigger this overflow by sending a crafted RTSP request to the target device.

With a CVSS score of 9.8, this vulnerability represents a severe threat to the operational stability and security of the surveillance environment. Successful exploitation could lead to full device compromise, allowing an attacker to intercept video feeds or pivot into the internal network.

Immediate Action: Apply the latest firmware update provided by GeoVision to all vulnerable GV-LPC2011 and GV-LPC2211 devices immediately.

Proactive Monitoring: Review security logs for suspicious RTSP traffic and look for signs of service instability, such as repeated process restarts of the ssvr component.

Compensating Controls: Restrict access to the RTSP service by implementing firewall rules that limit communication to authorized management IP addresses only.

Public Exploit Available: Unknown

This vulnerability is highly dangerous as it impacts a core communication service on the device. IT administrators should treat this as a high-priority task and ensure all affected hardware is updated to the latest secure version to prevent exploitation.