CVE-2022-28172
CVE-2022-28172 describes a cross-site scripting vulnerability in the web module of Hikvision Hybrid SAN/Cluster Storage products caused by insufficient input validation. Exploitation would involve sending messages with malicious commands to the affected device to trigger XSS. The connected docume...