Primary

Context

Hikvision HikCentral Professional Access Control Vulnerability Allowing Unauthenticated Admin Privileges

Vulnerability

Patched

An access control vulnerability has been identified in certain versions of Hikvision's HikCentral Professional. This vulnerability could enable an unauthenticated user to gain admin permissions. Affected versions range from 2.4.0 to 3.0.1.

Impact

Exploitation of this vulnerability could lead to unauthorized administrative access.

Remediation

Users can upgrade to HikCentral Professional version 3.1.0 to address this vulnerability. For assistance, contact the local technical support team.

Added: May 9, 2026, 9:17 AM

Updated: May 9, 2026, 9:17 AM

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

5.0

exploitability

7.0

remediation

7.7

relevance

7.8

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

5.0

exploitability

7.0

remediation

7.7

relevance

7.8

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Hikvision HikCentral Professional Access Control Vulnerability Allowing Unauthenticated Admin Privileges

Vulnerability

Impact

Remediation

Affected Products

Hikvision HikCentral Professional

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating