Security Advisory

CVE-2019-25465

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-11 18:23:09

Last updated 2026-04-07 14:04:24

Assigner VulnCheck

State PUBLISHED

Description

Hisilicon HiIpcam V100R003 contains a directory traversal vulnerability that allows unauthenticated attackers to access sensitive configuration files by exploiting directory listing in the cgi-bin directory. Attackers can request the getadslattr.cgi endpoint to retrieve ADSL credentials and network configuration parameters including usernames, passwords, and DNS settings.

← Browse all CVEs View on cve.org ↗