CVE-2025-13658 | Industrial Video & Control Longwatch up to 6.334 HTTP GET Request code injection (icsa-25-336-01)

Inserito da Angelo Barbosa | Dic 2, 2025 | CVE

A vulnerability categorized as critical has been discovered in Industrial Video & Control Longwatch up to 6.334. This issue affects some unknown processing of the component HTTP GET Request Handler. Such manipulation leads to code injection.

This vulnerability is listed as CVE-2025-13658. The attack may be performed from remote. There is no available exploit.

It is advisable to upgrade the affected component.

CVE-2025-13658 | Industrial Video & Control Longwatch up to 6.334 HTTP GET Request code injection (icsa-25-336-01)

Post correlati

CVE-2024-27400 | Linux Kernel prior 6.9.0 amdgpu amdgpu_ttm_move heap-based overflow (d3a9331a6591)

CVE-2024-30107 | HCL Connections 7.0/8.0 information disclosure (KB0112489)

CVE-2024-23600 | Ping Identity OPENIDM up to 7.5.0 Query Search Result information disclosure

CVE-2021-47563 | Linux Kernel up to 5.10.82/5.15.5 ice set_channels memory corruption (e65a8707b4cd/1f10b09ccc83/f65ee535df77)