ГлавнаяУязвимости → CVE-2023-28814
9.8критическая

CVE-2023-28814

Описание

Some versions of Hikvision's iSecure Center Product have an improper file upload control vulnerability. Due to the improper verification of file to be uploaded, attackers may upload malicious files to the server. iSecure Center is software released for China's domestic market only, with no overseas release.

CVSS
Балл9.8 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://www.hikvision.com/cn/support/CybersecurityCenter/SecurityNotices/2023-03/