CVE-2024-47487

Summary

There is a SQL injection vulnerability in some HikCentral Professional versions. This could allow an authenticated user to execute arbitrary SQL queries.

Affected Software

VendorProductVersion RangeStatus
HikvisionHikCentral ProfessionalVersions between V2.0.0 and V2.6.0affected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References