CVE-2025-26263

low-risk

Published 2025-02-28

GeoVision ASManager Windows desktop application with the version 6.1.2.0 or less (fixed in 6.2.0), is vulnerable to credentials disclosure due to improper memory handling in the ASManagerService.exe process.

Do I need to act?

0.27% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

1 public exploit available

52423

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 5.1/10 Medium

LOCAL / LOW complexity

References (3)

https://github.com/DRAGOWN/CVE-2025-26263

https://www.geovision.com.tw/download/product/GV-ASManager

https://www.geovision.com.tw/download/product/GV-ASManager%20%28Access%20Control...

/ 100

low-risk

Severity 17/34 · Moderate

Exploitability 1/34 · Minimal

Exposure 5/34 · Minimal