CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-53701

Vilar VS-IPC1002 IP cameras are vulnerable to Reflected XSS (Cross-site Scripting) attacks, because parameters in GET requests sent to /cgi-bin/action endpoint are not sanitized properly, making it possible to target logged in admin users. The vendor did not respond in any way. Only version 1.1.0.18 was tested, other versions might be vulnerable as well.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 7.7%

CVSS Severity

CVSS v3 Score 6.1

References

https://cert.pl/en/posts/2025/10/CVE-2025-53701

Products affected by CVE-2025-53701

Vimicro » Vs-Ipc1002 » Version: N/A

cpe:2.3:h:vimicro:vs-ipc1002:-
Vimicro » Vs-Ipc1002 Firmware » Version: 1.1.0.18

cpe:2.3:o:vimicro:vs-ipc1002_firmware:1.1.0.18

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-53701

Products

Pricing

Contact Us