Primary

Context

Hikvision HikCentral FocSign Unquoted Service Path Vulnerability Allowing Privilege Escalation

Vulnerability

A unquoted service path vulnerability has been identified in certain HikCentral FocSign versions. This vulnerability could enable an authenticated user to escalate privileges through local access.

Impact

Exploitation of this vulnerability could lead to unauthorized privilege escalation.

Remediation

Users can upgrade to HikCentral FocSign version 2.3.0 to address this vulnerability.

Added: Aug 29, 2025, 3:22 AM

Updated: Aug 29, 2025, 3:22 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.3

remediation

7.7

relevance

0.4

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.3

remediation

7.7

relevance

0.4

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Hikvision HikCentral FocSign Unquoted Service Path Vulnerability Allowing Privilege Escalation

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating