March 4, 2024 at 08:48AM Hikvision has released patches for two vulnerabilities in its security management system HikCentral Professional. The more serious flaw, CVE-2024-25063, could lead to unauthorized access to specific URLs. The second bug, CVE-2024-25064, requires authentication to be exploited. Hikvision urges customers to apply the patches promptly, as prior vulnerabilities have been exploited. … Read more
November 14, 2023 at 01:04AM US-based research group IPVM has accused Chinese video surveillance equipment company Hikvision of developing technology to identify Muslim students fasting during Ramadan, based on their dining records. Hikvision confirmed winning the tender for the project but denied its products can analyze video streams to identify ethnic minorities. IPVM claims the … Read more
October 16, 2023 at 08:24AM Chinese IoT and video surveillance product maker Milesight’s industrial cellular routers have a vulnerability that exposes system log files with passwords for administrators and users. Although the flaw has likely been patched for years, there have been some small-scale exploitation attempts observed. These routers are used in various sectors such … Read more