exploitDog

CVE-2023-28815

Опубликовано: 17 окт. 2025

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

Some versions of Hikvision's iSecure Center Product contain insufficient parameter validation, resulting in a command injection vulnerability. Attackers may exploit this to gain platform privileges and execute arbitrary commands on the system.iSecure Center is software released for China's domestic market only, with no overseas release.

Ссылки

https://www.hikvision.com/cn/support/CybersecurityCenter/SecurityNotices/2023-04/

EPSS

Процентиль: 54%

0.00318

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-141

Связанные уязвимости

GHSA-6hfp-gfww-3g4c

CVSS3: 9.8

github

4 месяца назад

Some versions of Hikvision's iSecure Center Product contain insufficient parameter validation, resulting in a command injection vulnerability. Attackers may exploit this to gain platform privileges and execute arbitrary commands on the system.iSecure Center is software released for China's domestic market only, with no overseas release.

EPSS

Процентиль: 54%

0.00318

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-141