CVE-2025-26263

GeoVision ASManager Windows desktop application with the version 6.1.2.0 or less (fixed in 6.2.0), is vulnerable to credentials disclosure due to improper memory handling in the ASManagerService.exe process.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.1 MEDIUM
LOCAL
LOW
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:N
mitreCNA
---
---
CISA-ADPADP
5.1 MEDIUM
LOCAL
LOW
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 55%
Common Weakness Enumeration
References
https://github.com/DRAGOWN/CVE-2025-26263
https://www.geovision.com.tw/download/product/GV-ASManager
https://www.geovision.com.tw/download/product/GV-ASManager%20%28Access%20Control%29