Vulnerabilities > Hikvision > DS A72048R CVS Firmware

DATE CVE VULNERABILITY TITLE RISK
2022-06-27 CVE-2022-28171 Command Injection vulnerability in Hikvision products
The web module in some Hikvision Hybrid SAN/Cluster Storage products have the following security vulnerability.
network
low complexity
hikvision CWE-77
critical
 9.8
9.8
2022-06-27 CVE-2022-28172 Cross-site Scripting vulnerability in Hikvision products
The web module in some Hikvision Hybrid SAN/Cluster Storage products have the following security vulnerability.
network
low complexity
hikvision CWE-79
6.1
6.1