CVE-2025-39245

Summary

There is a CSV Injection Vulnerability in some HikCentral Master Lite versions. This could allow an attacker to inject executable commands via malicious CSV data.

Affected Software

VendorProductVersion RangeStatus
HikvisionHikCentral Master LiteVersions between V2.2.1 and V2.3.2affected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References