Due to insufficient server-side validation, an attacker with login privileges could access certain resources that the attacker should not have access to by changing parameter values.
CPE | Name | Operator | Version |
---|---|---|---|
hikcentral_professional | ge | 2.0.0 | |
hikcentral_professional | lt | 2.5.1 |