CVE-2025-34067

216.73.216.6

· Published 02/07/2025 14:15 · Modified 03/07/2025 15:13

Labels: CVE-2025-34067 2025-07-02 CVE-2025-34067 CWE-502 [email protected]

Essential information

Published: 02/07/2025 14:15
Modified: 03/07/2025 15:13
Author: —
Creator: —
CVSS: 10.0 CRITICAL (v3) 10.0 CRITICAL (v4.0)
CISA KEV: No
CWE: —
CVSS vector: —

CVSS metrics

Description

An unauthenticated remote command execution vulnerability exists in the applyCT component of the Hikvision Integrated Security Management Platform due to the use of a vulnerable version of the Fastjson library. The endpoint /bic/ssoService/v1/applyCT deserializes untrusted user input, allowing an attacker to trigger Fastjson's auto-type feature to load arbitrary Java classes. By referencing a malicious class via an LDAP URL, an attacker can achieve remote code execution on the underlying system.

NVD status

Status: Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source: [email protected]
NVD: View on NVD

Affected products (CPE)

Product	CPE
hikvision / integrated security management platform	`cpe:2.3:a:hikvision:integrated_security_management_platform::::::::`