Incorrect permission assignment for critical resource issue exists in Exment v6.1.4 and earlier and Exment v5.0.11 and earlier. Rated low severity (CVSS 3.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.
Authentication Bypass
Exment
NVD
CVSS 3.1
3.8
EPSS
0.4%
There is an XSS vulnerability in some HikCentral Master Lite versions. Rated low severity (CVSS 2.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
XSS
Hikcentral Master
NVD
CVSS 4.0
2.1
EPSS
0.3%