Hanwha Security Smart Security Manager
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Hanwha Security Smart Security Manager.
By the Year
In 2026 there have been 0 vulnerabilities in Hanwha Security Smart Security Manager. Last year, in 2025 Smart Security Manager had 1 security vulnerability published. Right now, Smart Security Manager is on track to have less security vulnerabilities in 2026 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 1 | 0.00 |
It may take a day or so for new Smart Security Manager vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Hanwha Security Smart Security Manager Security Vulnerabilities
SSM 1.32 RCE via Apache ActiveMQ PUT CORS Bypass
CVE-2016-15046
- July 25, 2025
A client-side remote code execution vulnerability exists in Hanwha Techwin Smart Security Manager (SSM) versions 1.32 and 1.4, due to improper restrictions on the PUT method exposed by the bundled Apache ActiveMQ instance (running on port 8161). An attacker can exploit this flaw through a Cross-Origin Resource Sharing (CORS) bypass combined with JavaScript-triggered file uploads to the web server, ultimately resulting in arbitrary code execution with SYSTEM privileges. This vulnerability bypasses the server-side mitigations introduced in ZDI-15-156 and ZDI-16-481 by shifting the exploitation to the client-side. This product is now referred to as Hanwha Wisenet SSM and it is unknown if current versions are affected.
Unrestricted File Upload
An issue was discovered in Hanwha Techwin Smart Security Manager Versions 1.5 and prior
CVE-2017-5169
- February 13, 2017
An issue was discovered in Hanwha Techwin Smart Security Manager Versions 1.5 and prior. Multiple Cross Site Request Forgery vulnerabilities have been identified. The flaws exist within the Redis and Apache Felix Gogo servers that are installed as part of this product. By issuing specific HTTP Post requests, an attacker can gain system level access to a remote shell session. Smart Security Manager Versions 1.5 and prior are affected by these vulnerabilities. These vulnerabilities can allow for remote code execution.
An issue was discovered in Hanwha Techwin Smart Security Manager Versions 1.5 and prior
CVE-2017-5168
- February 13, 2017
An issue was discovered in Hanwha Techwin Smart Security Manager Versions 1.5 and prior. Multiple Path Traversal vulnerabilities have been identified. The flaws exist within the ActiveMQ Broker service that is installed as part of the product. By issuing specific HTTP requests, if a user visits a malicious page, an attacker can gain access to arbitrary files on the server. Smart Security Manager Versions 1.4 and prior to 1.31 are affected by these vulnerabilities. These vulnerabilities can allow for remote code execution.
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Hanwha Security Smart Security Manager or by Hanwha Security? Click the Watch button to subscribe.
