CVE-2026-7841 CVSS:8.8

A remote code execution vulnerability

exists in Notification Settings on GeoVision GV-ASWeb 6.2.0. An authenticated

user with System Setting permissions can execute arbitrary commands on the

server by sending a crafted HTTP POST request to the ASWebCommon.srf backend

endpoint to bypass the frontend restrictions.

产品:

📌 来源: NVD-Latest | 🆔 CVE-2026-7841 | 📅 2026-05-06