VYPR
Vendor

Avigilon

Products
2
CVEs
3
Across products
3
Status
Private

Products

2

Recent CVEs

3
  • CVE-2025-56266Sep 8, 2025
    risk 0.01cvss epss 0.03

    A Host Header Injection vulnerability in Avigilon ACM v7.10.0.20 allows attackers to execute arbitrary code via supplying a crafted URL.

  • CVE-2025-56267Sep 8, 2025
    risk 0.00cvss epss 0.01

    A CSV injection vulnerability in the /id_profiles endpoint of Avigilon ACM v7.10.0.20 allows attackers to execute arbitrary code via suuplying a crafted Excel file.

  • CVE-2015-2860Jun 23, 2015
    risk 0.00cvss epss 0.03

    Directory traversal vulnerability in Avigilon Control Center (ACC) 4 before 4.12.0.54 and 5 before 5.4.2.22 allows remote attackers to read arbitrary files via a crafted help/ URL.