ACM

CVEs (2)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2025-56266	Avigilon ACM		0.01	—	0.07		Sep 8, 2025	A Host Header Injection vulnerability in Avigilon ACM v7.10.0.20 allows attackers to execute arbitrary code via supplying a crafted URL.
CVE-2025-56267	Avigilon ACM		0.00	—	0.00		Sep 8, 2025	A CSV injection vulnerability in the /id_profiles endpoint of Avigilon ACM v7.10.0.20 allows attackers to execute arbitrary code via suuplying a crafted Excel file.

CVE-2025-56266Sep 8, 2025
Avigilon
ACM
risk 0.01cvss —epss 0.07
A Host Header Injection vulnerability in Avigilon ACM v7.10.0.20 allows attackers to execute arbitrary code via supplying a crafted URL.
CVE-2025-56267Sep 8, 2025
Avigilon
ACM
risk 0.00cvss —epss 0.00
A CSV injection vulnerability in the /id_profiles endpoint of Avigilon ACM v7.10.0.20 allows attackers to execute arbitrary code via suuplying a crafted Excel file.