CVE-2025-34067
Hikvision Integrated Security Management Platform Remote Command Execution via applyCT Fastjson
An unauthenticated remote command execution vulnerability exists in the applyCT component of the Hikvision Integrated Security Management Platform due to the use of a vulnerable version of the Fastjson library. The endpoint /bic/ssoService/v1/applyCT deserializes untrusted user input, allowing an attacker to trigger Fastjson's auto-type feature to load arbitrary Java classes. By referencing a malicious class via an LDAP URL, an attacker can achieve remote code execution on the underlying system. Exploitation evidence was observed by the Shadowserver Foundation on 2025-02-05 UTC.
| CWE | CWE-502 |
| Vendor | hikvision |
| Product | integrated security management platform |
| Published | Jul 2, 2025 |
| Last Updated | Jul 14, 2026 |
Get instant alerts for hikvision integrated security management platform
Be the first to know when new unknown vulnerabilities affecting hikvision integrated security management platform are published โ delivered to Slack, Telegram or Discord.