{"uuid": "97f4c111-1255-4e69-a2ec-954e4512ede5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-12851", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116803556150711396", "content": "CVE-2026-12851: CRITICAL OS command injection in GeoVision GV-I/O Box 4E v2.09 via DVRSearch/Network.cgi allows remote code execution. Patch status pending \u2014 restrict access & monitor endpoints. https://radar.offseq.com/threat/cve-2026-12851-cwe-78-improper-neutralization-of-s-3964552d83f5f479 #OffSeq #Vulnerability #IoTSecurity #CVE #Security", "creation_timestamp": "2026-06-24T06:00:25.798184Z"}