Vulnerabilities > Hikvision > Hikcentral Professional
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-10-18 | CVE-2024-47487 | SQL Injection vulnerability in Hikvision Hikcentral Professional 2.0.0/2.5.1 There is a SQL injection vulnerability in some HikCentral Professional versions. | 8.8 |
| 2024-03-02 | CVE-2024-25063 | Unspecified vulnerability in Hikvision Hikcentral Professional 2.0.0/2.5.1 Due to insufficient server-side validation, a successful exploit of this vulnerability could allow an attacker to gain access to certain URLs that the attacker should not have access to. | 7.5 |
| 2024-03-02 | CVE-2024-25064 | Unspecified vulnerability in Hikvision Hikcentral Professional 2.0.0 Due to insufficient server-side validation, an attacker with login privileges could access certain resources that the attacker should not have access to by changing parameter values. | 4.3 |