Описание
There is a Buffer overflow Vulnerability in the device Search and Discovery feature of Hikvision Access Control Products. If exploited, an attacker on the same local area network (LAN) could cause the device to malfunction by sending specially crafted packets to an unpatched device.
Затрагиваемое ПО
Hikvision Ds-k1t331 firmwareHikvision Ds-k1t331Hikvision Ds-k1t341a firmwareHikvision Ds-k1t341aHikvision Ds-k1t341b firmwareHikvision Ds-k1t341bHikvision Ds-k1t671 firmwareHikvision Ds-k1t671Hikvision Ds-k5671 firmwareHikvision Ds-k5671Hikvision Ds-k1t672 firmwareHikvision Ds-k1t672Hikvision Ds-k1t680 firmwareHikvision Ds-k1t680Hikvision Ds-k1t981 firmwareHikvision Ds-k1t981Hikvision Ds-k1t341c firmwareHikvision Ds-k1t341cHikvision Ds-k1t670 firmwareHikvision Ds-k1t670Hikvision Ds-k1t673 firmwareHikvision Ds-k1t673Hikvision Ds-k1t8003 firmwareHikvision Ds-k1t8003Hikvision Ds-k1t804a firmware
CVSS
| Балл | 8.8 — высокая |
| Вектор | CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Источники
https://www.hikvision.com/en/support/cybersecurity/security-advisory/buffer-overflow-vulnerabilities-in-some-hikvision-products/https://www.talosintelligence.com/vulnerability_reports/TALOS-2025-2281