3 matches found
VulnCheck KEV: CVE-2025-34058
Hikvision Streaming Media Management Server v2.3.5 uses default credentials that allow remote attackers to authenticate and access restricted functionality. After authenticating with these credentials, an attacker can exploit an arbitrary file read vulnerability in the /systemLog/downFile.php...
PT-2025-27541 · Hikvision · Hikvision Streaming Media Management Server
Name of the Vulnerable Software and Affected Versions: Hikvision Streaming Media Management Server version 2.3.5 Description: The issue allows remote attackers to authenticate using default credentials and access restricted functionality. After authentication, an attacker can exploit an arbitrary...
Arbitrary File Read Vulnerability in Streaming Media Management Server of Hangzhou Hikvision Digital Technology Co.
Hangzhou Hikvision System Technology Co., Ltd. is a provider of security products and industry solutions. An arbitrary file read vulnerability exists in the streaming media management server of Hangzhou Hikvision Digital Technology Co. Ltd, which can be exploited by attackers to read sensitive...