What is CVE-2020-3928?

CVE-2020-3928 is a vulnerability in the GeoVision Door Access Control device family where a root password is hardcoded in all devices.

How severe is CVE-2020-3928?

CVE-2020-3928 has a severity rating of 9.8, which is considered critical.

Which devices are affected by CVE-2020-3928?

The GeoVision GV-AS210, GV-AS410, GV-AS810, GV-AS1010, and GV-GF192x devices are affected by CVE-2020-3928.

How can I fix CVE-2020-3928?

To fix CVE-2020-3928, it is recommended to contact the manufacturer for a firmware update or apply any available patches.

Where can I find more information about CVE-2020-3928?

More information about CVE-2020-3928 can be found at the following reference: [link](https://www.twcert.org.tw/tw/cp-132-3695-9e72d-1.html)

Vulnerability/
CVE-2020-3928

critical

CWE

798

12/6/2020

17/9/2024

CVE-2020-3928: GeoVision Door Access Control Device - Hardcoded privileged password

First published: Fri Jun 12 2020(Updated: )

GeoVision Door Access Control device family is hardcoded with a root password, which adopting an identical password in all devices.

Credit: twcert@cert.org.tw

Affected Software	Affected Version	How to fix
Geovision GV-AS210 Firmware	<2.21
Geovision Gv-as210
Geovision GV-AS410 Firmware	<2.21
Geovision GV-AS410
Geovision GV-AS810 Firmware	<2.21
Usavisionsys Geovision Gv-as810 Firmware
Geovision GV-AS1010	<1.32
Geovision GV-AS1010
Geovision GV-GF192X Firmware	<1.10
Usavisionsys Geovision Gv-gf192x Firmware

Remedy

Update to version 2.22 in GV-AS210 Update to version 2.22 in GV-AS410 Update to version 2.22 in GV-AS810 Update to version 1.22 in GV-GF192x Update to version 1.33 in GV-AS1010

Never miss a vulnerability like this again

Reference Links

https://www.twcert.org.tw/tw/cp-132-3695-9e72d-1.html

Frequently Asked Questions

What is CVE-2020-3928?
CVE-2020-3928 is a vulnerability in the GeoVision Door Access Control device family where a root password is hardcoded in all devices.
How severe is CVE-2020-3928?
CVE-2020-3928 has a severity rating of 9.8, which is considered critical.
Which devices are affected by CVE-2020-3928?
The GeoVision GV-AS210, GV-AS410, GV-AS810, GV-AS1010, and GV-GF192x devices are affected by CVE-2020-3928.
How can I fix CVE-2020-3928?
To fix CVE-2020-3928, it is recommended to contact the manufacturer for a firmware update or apply any available patches.
Where can I find more information about CVE-2020-3928?
More information about CVE-2020-3928 can be found at the following reference: [link](https://www.twcert.org.tw/tw/cp-132-3695-9e72d-1.html)

agent/type
agent/author
agent/references
agent/remedy
agent/severity
agent/title
agent/weakness
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/first-publish-date
agent/event
agent/source
agent/tags
agent/softwarecombine
collector/nvd-index
agent/software-canonical-lookup-request
vendor/usavisionsys
canonical/geovision gv-as210 firmware
canonical/geovision gv-as210
canonical/geovision gv-as410 firmware
canonical/geovision gv-as410
canonical/geovision gv-as810 firmware
canonical/usavisionsys geovision gv-as810 firmware
canonical/geovision gv-as1010
canonical/geovision gv-gf192x firmware
canonical/usavisionsys geovision gv-gf192x firmware

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.