exploitDog

GHSA-m8q3-732g-g5mm

Опубликовано: 22 окт. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 8.3

Описание

Hikvision CSMP (Comprehensive Security Management Platform) iSecure Center through 2023-06-25 allows file upload via /center/api/files directory traversal, as exploited in the wild in 2024 and 2025.

Hikvision CSMP (Comprehensive Security Management Platform) iSecure Center through 2023-06-25 allows file upload via /center/api/files directory traversal, as exploited in the wild in 2024 and 2025.

Ссылки

EPSS

Процентиль: 28%

0.00102

Низкий

8.3 High

CVSS3

CVE ID

Дефекты

CWE-24

Связанные уязвимости

CVE-2023-53691

CVSS3: 8.3

nvd

4 месяца назад

Hikvision CSMP (Comprehensive Security Management Platform) iSecure Center through 2023-06-25 allows file upload via /center/api/files directory traversal, as exploited in the wild in 2024 and 2025.

EPSS

Процентиль: 28%

0.00102

Низкий

8.3 High

CVSS3

CVE ID

Дефекты

CWE-24