all InfoSec news
Critical Flaw in Hikvision Video Storage Let Attacker Gain Admin Rights
Cyber Security News cybersecuritynews.com
The Chinese-based Video surveillance equipment manufacturer has disclosed a critical flaw in their storage products, allowing threat actors to obtain admin permissions. This flaw can be exploited by sending specially crafted messages to the affected devices. CVE-2023-28808: Improper Access Control in Storage Products CVSS Score: 9.1 CVSS Vector : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N Some Storage products, like Hikvision’s […]
The post Critical Flaw in Hikvision Video Storage Let Attacker Gain Admin Rights appeared first on Cyber Security News.
access access control admin rights chinese control critical critical flaw cve cvss cyber cyber security devices equipment exploited flaw hikvision manufacturer messages permissions products rights score security storage surveillance threat threat actors video video surveillance vulnerability