Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
hikvision vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-25063
Due to insufficient server-side validation, a successful exploit of this vulnerability could allow an malicious user to gain access to certain URLs that the attacker should not have access to.
Hikvision Hikcentral Professional
NA
CVE-2024-25064
Due to insufficient server-side validation, an attacker with login privileges could access certain resources that the attacker should not have access to by changing parameter values.
Hikvision Hikcentral Professional
NA
CVE-2023-6894
A vulnerability was found in Hikvision Intercom Broadcasting System 3.0.3_20201113_RELEASE(HIK). It has been classified as problematic. This affects an unknown part of the file access/html/system.html of the component Log File Handler. The manipulation leads to information disclo...
Hikvision Intercom Broadcast System
NA
CVE-2023-6895
A vulnerability was found in Hikvision Intercom Broadcasting System 3.0.3_20201113_RELEASE(HIK). It has been declared as critical. This vulnerability affects unknown code of the file /php/ping.php. The manipulation of the argument jsondata[ip] with the input netstat -ano leads to...
Hikvision Intercom Broadcast System
4 Github repositories
NA
CVE-2023-6893
A vulnerability was found in Hikvision Intercom Broadcasting System 3.0.3_20201113_RELEASE(HIK) and classified as problematic. Affected by this issue is some unknown functionality of the file /php/exportrecord.php. The manipulation of the argument downname with the input C:\ICPAS...
Hikvision Intercom Broadcast System
1 Github repository
NA
CVE-2023-28813
An attacker could exploit a vulnerability by sending crafted messages to computers installed with this plug-in to modify plug-in parameters, which could cause affected computers to download malicious files.
Hikvision Localservicecomponents
NA
CVE-2023-28812
There is a buffer overflow vulnerability in a web browser plug-in could allow an malicious user to exploit the vulnerability by sending crafted messages to computers installed with this plug-in, which could lead to arbitrary code execution or cause process exception of the plug-i...
Hikvision Localservicecomponents
NA
CVE-2023-28811
There is a buffer overflow in the password recovery feature of Hikvision NVR/DVR models. If exploited, an attacker on the same local area network (LAN) could cause the device to malfunction by sending specially crafted packets to an unpatched device.
Hikvision Nvr-216mh-c\\(d\\) Firmware
Hikvision Nvr-216mh-c\\/16p\\(d\\) Firmware
Hikvision Nvr-208mh-c\\/8p\\(d\\) Firmware
Hikvision Nvr-104mh-c\\/4p\\(d\\) Firmware
Hikvision Nvr-104mh-c\\(d\\) Firmware
Hikvision Nvr-108mh-c\\(d\\) Firmware
Hikvision Nvr-116mh-c\\(d\\) Firmware
Hikvision Ds-7104ni-q1\\(c\\) Firmware
Hikvision Ds-7104ni-q1\\(d\\) Firmware
Hikvision Ds-7108ni-q1\\(c\\) Firmware
Hikvision Ds-7108ni-q1\\(d\\) Firmware
Hikvision Nvr-104mh-d\\(c\\) Firmware
Hikvision Nvr-104mh-d\\(d\\) Firmware
Hikvision Nvr-108h-d\\(c\\) Firmware
Hikvision Nvr-108mh-d\\(c\\) Firmware
Hikvision Nvr-108mh-d\\(d\\) Firmware
Hikvision Nvr-104mh-d\\/4p\\(c\\) Firmware
Hikvision Nvr-108h-d\\/8p\\(c\\) Firmware
Hikvision Nvr-108h-d\\/8p\\(d\\) Firmware
Hikvision Nvr-108mh-d\\/8p\\(c\\) Firmware
Hikvision Ds-7604ni-q1\\(c\\) Firmware
Hikvision Ds-7604ni-q1\\/4p\\(c\\) Firmware
NA
CVE-2023-28810
Some access control/intercom products have unauthorized modification of device network configuration vulnerabilities. Attackers can modify device network configuration by sending specific data packets to the vulnerable interface within the same local network.
Hikvision Ds-k1t804af Firmware
Hikvision Ds-k1t804amf Firmware
Hikvision Ds-k1t341am Firmware
Hikvision Ds-k1t341amf Firmware
Hikvision Ds-k1t671m Firmware
Hikvision Ds-k1t671mf Firmware
Hikvision Ds-k1t671 Firmware
Hikvision Ds-k1t343efwx Firmware
Hikvision Ds-k1t343efx Firmware
Hikvision Ds-k1t343ewx Firmware
Hikvision Ds-k1t343ex Firmware
Hikvision Ds-k1t343mfwx Firmware
Hikvision Ds-k1t343mfx Firmware
Hikvision Ds-k1t343mwx Firmware
Hikvision Ds-k1t343mx Firmware
Hikvision Ds-k1t341c Firmware
Hikvision Ds-k1t320efwx Firmware
Hikvision Ds-k1t320efx Firmware
Hikvision Ds-k1t320ewx Firmware
Hikvision Ds-k1t320ex Firmware
Hikvision Ds-k1t320mfwx Firmware
Hikvision Ds-k1t320mfx Firmware
NA
CVE-2023-28809
Some access control products are vulnerable to a session hijacking attack because the product does not update the session ID after a user successfully logs in. To exploit the vulnerability, attackers have to request the session ID at the same time as a valid user logs in, and gai...
Hikvision Ds-k1t320efwx Firmware -
Hikvision Ds-k1t320efx Firmware -
Hikvision Ds-k1t320ewx Firmware -
Hikvision Ds-k1t320ex Firmware -
Hikvision Ds-k1t320mfwx Firmware -
Hikvision Ds-k1t320mfx Firmware -
Hikvision Ds-k1t320mwx Firmware -
Hikvision Ds-k1t320mx Firmware -
Hikvision Ds-k1t341am Firmware -
Hikvision Ds-k1t341amf Firmware -
Hikvision Ds-k1t341cm Firmware -
Hikvision Ds-k1t343ewx Firmware -
Hikvision Ds-k1t343ex Firmware -
Hikvision Ds-k1t343mwx Firmware -
Hikvision Ds-k1t343mx Firmware -
Hikvision Ds-k1t671 Firmware -
Hikvision Ds-k1t671m Firmware -
Hikvision Ds-k1t671mf Firmware -
Hikvision Ds-k1t671t Firmware -
Hikvision Ds-k1t671tm Firmware -
Hikvision Ds-k1t671tm-3xf Firmware -
Hikvision Ds-k1t671tmf Firmware -
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3012
CVE-2024-30200
XXE
CVE-2023-24955
CVE-2023-42931
CVE-2024-29231
remote code execution
cross-site scripting
CVE-2024-0677
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »