Total
3 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2024-25064 | 1 Hikvision | 1 Hikcentral Professional | 2024-11-21 | N/A | 4.3 MEDIUM |
Due to insufficient server-side validation, an attacker with login privileges could access certain resources that the attacker should not have access to by changing parameter values. | |||||
CVE-2024-25063 | 1 Hikvision | 1 Hikcentral Professional | 2024-11-21 | N/A | 7.5 HIGH |
Due to insufficient server-side validation, a successful exploit of this vulnerability could allow an attacker to gain access to certain URLs that the attacker should not have access to. | |||||
CVE-2024-47487 | 1 Hikvision | 1 Hikcentral Professional | 2024-10-22 | N/A | 8.8 HIGH |
There is a SQL injection vulnerability in some HikCentral Professional versions. This could allow an authenticated user to execute arbitrary SQL queries. |