all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Critical Flaw in Hikvision Video Storage Let Attacker Gain Admin Rights

Add to bookmarks
April 19, 2023, 4:56 a.m. | Guru

Cyber Security News cybersecuritynews.com

The Chinese-based Video surveillance equipment manufacturer has disclosed a critical flaw in their storage products, allowing threat actors to obtain admin permissions. This flaw can be exploited by sending specially crafted messages to the affected devices. CVE-2023-28808: Improper Access Control in Storage Products CVSS Score: 9.1 CVSS Vector : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N Some Storage products, like Hikvision’s […]


The post Critical Flaw in Hikvision Video Storage Let Attacker Gain Admin Rights appeared first on Cyber Security News.

access access control admin rights chinese control critical critical flaw cve cvss cyber cyber security devices equipment exploited flaw hikvision manufacturer messages permissions products rights score security storage surveillance threat threat actors video video surveillance vulnerability

Visit resource

More from cybersecuritynews.com / Cyber Security News

R00TK1T Claims that They have Acquired Confidential Data from Nestle 27 minutes ago | cybersecuritynews.com
attention caught claim claims +17
Kubernetes Clusters Under Attack: Critical OpenMetadata Vulnerabilities Exploited an hour ago | cybersecuritynews.com
attack attackers campaign clusters +21
Authorities Busted Cybercrime Platform That Steal Passwords & Card Details an hour ago | cybersecuritynews.com
addresses attacks busted card +20
Cisco Unveils Hypershield: AI-Powered Automated Vulnerability Shield 2 hours ago | cybersecuritynews.com
ai-powered automated centers cisco +21
Cisco IOS SNMP Implementation Flaw Trigger Remote Attacks 3 hours ago | cybersecuritynews.com
access access control acl advisory +27
Poisoned Google Ads Targeting Infra Teams with Weaponized IP Scanners 3 hours ago | cybersecuritynews.com
actor administration ads attack +26
Xiid SealedTunnel: Unfazed by Yet Another Critical Firewall Vulnerability (CVE-2024-3400) 19 hours ago | cybersecuritynews.com
common vulnerability scoring system critical critical vulnerability customers +18
5 Sandbox Tools for Phishing Analysis in 2024 20 hours ago | cybersecuritynews.com
analysis analysts attacks can +17
Tor Browser 13.0 Released: What’s New 22 hours ago | cybersecuritynews.com
attack attack vectors browser bug +26

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Cybersecurity Engineer

@ Alstom | Charleroi, BE
View on infosec-jobs.com

Member of Compliance, Information Technology

@ Anchorage Digital | United States
View on infosec-jobs.com

Information Security Consultant (GRC) - Cumulus Systems

@ Hitachi | (HIL) DELHI - RHQ
View on infosec-jobs.com

Security Engineer

@ EarnIn | Mexico
View on infosec-jobs.com
View more jobs