Home

Description

A Host Header Injection vulnerability in Avigilon ACM v7.10.0.20 allows attackers to execute arbitrary code via supplying a crafted URL.

PUBLISHED Reserved 2025-08-16 | Published 2025-09-08 | Updated 2025-09-08 | Assigner mitre

References

github.com/nikolas-ch/CVEs/tree/main/AvigilonACM_v7.10.0.20/

github.com/...ain/AvigilonACM_v7.10.0.20/HostHeaderInjection

github.com/...20/HostHeaderInjection/HostHeaderInjection.txt

cve.org (CVE-2025-56266)

nvd.nist.gov (CVE-2025-56266)

Download JSON