A vulnerability identified as critical has been detected in GeoVision GV-VMS V20.0.2 up to 20.0.2 . This affects an unknown function of the component WebCam Server Login . The manipulation leads to out-of-bounds write. This vulnerability is traded as CVE-2026-42370 . It is possible to initiate the attack remotely. There is no exploit available. You should upgrade the affected component.