CVE-2025-56266 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A Host Header Injection vulnerability in Avigilon ACM v7.10.0.20 allows attackers to execute arbitrary code via supplying a crafted URL.
Critical CVSS: 9.8

CVE-2025-56266

A Host Header Injection vulnerability in Avigilon ACM v7.10.0.20 allows attackers to execute arbitrary code via supplying a crafted URL.
Vendor
Avigilon
Product
Access Control Manager
CWE
CWE-74
Yayın Tarihi
2025-09-08 18:15:33
Güncelleme
2025-09-12 20:44:33
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-74 Access Control Manager CRITICAL Avigilon 2025

Referanslar

https://github.com/nikolas-ch/CVEs/blob/main/AvigilonACM_v7.10.0.20/HostHeaderInjection/HostHeaderInjection.txt https://github.com/nikolas-ch/CVEs/tree/main/AvigilonACM_v7.10.0.20/ https://github.com/nikolas-ch/CVEs/tree/main/AvigilonACM_v7.10.0.20/HostHeaderInjection