Lucene search
+L

560 matches found

CVE
CVE
added 2025/10/22 12:0 a.m.18 views

CVE-2024-58274

CVE-2024-58274 affects Hikvision CSMP iSecure Center (through 2024-08-01). Affected component is the JSON data handling in /center/api/installation/detection, where unverified use of the $() command can lead to arbitrary command execution. Documents indicate exploitation in the wild during 2024 a...

8.3CVSS6.8AI score0.17508EPSS
In wildExploits0References3
CVE
CVE
added 2025/10/22 12:0 a.m.16 views

CVE-2023-53691

CVE-2023-53691 affects Hikvision CSMP iSecure Center prior to or through 2023-06-25, where a directory traversal flaw in /center/api/files enables file upload. Exploitation has been observed in the wild during 2024 and 2025. The vulnerability arises from improper handling of file paths in the fil...

8.3CVSS6.7AI score0.01173EPSS
In wildExploits0References1
VulnCheck KEV
VulnCheck KEV
added 2025/10/22 12:0 a.m.4 views

VulnCheck KEV: CVE-2024-58274

Hikvision CSMP Comprehensive Security Management Platform iSecure Center through 2024-08-01 allows execution of a command within $ in /center/api/installation/detection JSON data, as exploited in the wild in 2024 and 2025...

8.3CVSS6AI score0.17508EPSS
In wildExploits0References2
RedhatCVE
RedhatCVE
added 2025/10/18 11:44 a.m.13 views

CVE-2023-28815

Some versions of Hikvision's iSecure Center Product contain insufficient parameter validation, resulting in a command injection vulnerability. Attackers may exploit this to gain platform privileges and execute arbitrary commands on the system.iSecure Center is software released for China's domest...

9.8CVSS8.2AI score0.0146EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/18 11:44 a.m.9 views

CVE-2023-28814

Some versions of Hikvision's iSecure Center Product have an improper file upload control vulnerability. Due to the improper verification of file to be uploaded, attackers may upload malicious files to the server. iSecure Center is software released for China's domestic market only, with no overse...

9.8CVSS7AI score0.00469EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/17 12:31 p.m.5 views

EUVD-2023-32450

Some versions of Hikvision's iSecure Center Product contain insufficient parameter validation, resulting in a command injection vulnerability. Attackers may exploit this to gain platform privileges and execute arbitrary commands on the system.iSecure Center is software released for China's domest...

9.8CVSS7.7AI score0.0146EPSS
Exploits0References2
NVD
NVD
added 2025/10/17 12:15 p.m.9 views

CVE-2023-28815

Some versions of Hikvision's iSecure Center Product contain insufficient parameter validation, resulting in a command injection vulnerability. Attackers may exploit this to gain platform privileges and execute arbitrary commands on the system.iSecure Center is software released for China's domest...

9.8CVSS0.0146EPSS
Exploits0References1
NVD
NVD
added 2025/10/17 11:15 a.m.4 views

CVE-2023-28814

Some versions of Hikvision's iSecure Center Product have an improper file upload control vulnerability. Due to the improper verification of file to be uploaded, attackers may upload malicious files to the server. iSecure Center is software released for China's domestic market only, with no overse...

9.8CVSS0.00469EPSS
Exploits0References1
CVE
CVE
added 2025/10/17 11:7 a.m.22 views

CVE-2023-28815

CVE-2023-28815 concerns Hikvision’s iSecure Center product, where insufficient parameter validation enables a command-injection vulnerability. Affected software is described as released for China’s domestic market only, with no overseas release. The vulnerability could allow an attacker to gain p...

9.8CVSS7.9AI score0.0146EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/17 11:7 a.m.4 views

CVE-2023-28815

Some versions of Hikvision's iSecure Center Product contain insufficient parameter validation, resulting in a command injection vulnerability. Attackers may exploit this to gain platform privileges and execute arbitrary commands on the system.iSecure Center is software released for China's domest...

9.8CVSS7.9AI score0.0146EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/17 11:7 a.m.12 views

CVE-2023-28815

Some versions of Hikvision's iSecure Center Product contain insufficient parameter validation, resulting in a command injection vulnerability. Attackers may exploit this to gain platform privileges and execute arbitrary commands on the system.iSecure Center is software released for China's domest...

9.8CVSS0.0146EPSS
Exploits0References1
CVE
CVE
added 2025/10/17 11:7 a.m.16 views

CVE-2023-28814

The CVE-2023-28814 entry concerns Hikvision iSecure Center Product (China domestic market) with an improper file upload validation. The Red Hat/NVD/CVE sources describe that insufficient verification allows uploading of malicious files to the server, indicating a high-severity, network-accessible...

9.8CVSS6.6AI score0.00469EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/17 11:7 a.m.11 views

CVE-2023-28814

Some versions of Hikvision's iSecure Center Product have an improper file upload control vulnerability. Due to the improper verification of file to be uploaded, attackers may upload malicious files to the server. iSecure Center is software released for China's domestic market only, with no overse...

9.8CVSS0.00469EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/17 11:7 a.m.2 views

CVE-2023-28814

Some versions of Hikvision's iSecure Center Product have an improper file upload control vulnerability. Due to the improper verification of file to be uploaded, attackers may upload malicious files to the server. iSecure Center is software released for China's domestic market only, with no overse...

9.8CVSS6.6AI score0.00469EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/17 11:7 a.m.5 views

EUVD-2023-32449

Some versions of Hikvision's iSecure Center Product have an improper file upload control vulnerability. Due to the improper verification of file to be uploaded, attackers may upload malicious files to the server. iSecure Center is software released for China's domestic market only, with no overse...

9.8CVSS6.5AI score0.00469EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/10/17 12:0 a.m.5 views

Hikvision iSecure Center 安全漏洞

Hikvision iSecure Center is an integrated security management platform from Hikvision China. A security vulnerability exists in Hikvision iSecure Center that stems from insufficient parameter validation, which could lead to a command injection attack...

9.8CVSS7.3AI score0.0146EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/10/17 12:0 a.m.6 views

Hikvision iSecure Center 安全漏洞

Hikvision iSecure Center is an integrated security management platform from Hikvision China. A security vulnerability exists in Hikvision iSecure Center that stems from improper file upload validation, which could result in the upload of malicious files...

9.8CVSS6.9AI score0.00469EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2020-28191

Malware in sbrugna...

5.3CVSS5.3AI score0.01103EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-16894

Malware in sbrugna...

8.8CVSS8.7AI score0.0233EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2015-4430

Malware in sbrugna...

6.8CVSS6.6AI score0.0128EPSS
Exploits0References2
Rows per page
Query Builder