Kiloview: Security Vulnerabilities
An issue in KiloView Dual Channel 4k HDMI & 3G-SDI HEVC Video Encoder Firmware v.1.20.0006 allows a remote attacker to cause a denial of service via the systemctrl API System/reFactory component.
CVSS Score
7.5
EPSS Score
0.003
Published
2025-11-06
A 'Cross-site Scripting' (XSS) vulnerability, characterized by improper input neutralization during web page generation, has been discovered. This vulnerability allows for Stored XSS attacks to occur. Multiple areas within the administration interface of the webserver lack adequate input validation, resulting in multiple instances of Stored XSS vulnerabilities.
CVSS Score
7.2
EPSS Score
0.001
Published
2024-07-02
Hardcoded credentials are discovered within the application's source code, creating a potential security risk for unauthorized access.
CVSS Score
9.8
EPSS Score
0.001
Published
2024-07-02