CVE-2025-39247 | THREATINT

Description

There is an Access Control Vulnerability in some HikCentral Professional versions. This could allow an unauthenticated user to obtain the admin permission.

PUBLISHED Reserved 2025-04-16 | Published 2025-08-29 | Updated 2025-08-29 | Assigner hikvision

HIGH: 8.6CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N

Product status

Versions between V2.3.1 and V2.6.2

affected

Version V3.0.0

affected

Credits

Dr. Matthias Lutter finder

References

www.hikvision.com/...rabilities-in-some-hikcentral-products/

cve.org (CVE-2025-39247)

nvd.nist.gov (CVE-2025-39247)

Download JSON