Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
hikvision ip cameras - vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2021-36360
Unauthenticated command injection in a variety of Hikvision IP cameras. This vulnerability was reportedly added to the Moobot botnet in December, and continues to be actively exploited.
9.3
CVSSv2
CVE-2021-36260
A command injection vulnerability in the web server of some Hikvision product. Due to the insufficient input validation, attacker can exploit the vulnerability to launch a command injection attack by sending some messages with malicious commands.
Hikvision Ds-2cd2026g2-iu\\/sl Firmware -
Hikvision Ds-2cd2046g2-iu\\/sl Firmware -
Hikvision Ds-2cd2066g2-i\\(u\\) Firmware -
Hikvision Ds-2cd2066g2-iu\\/sl Firmware -
Hikvision Ds-2cd2086g2-i\\(u\\) Firmware -
Hikvision Ds-2cd2086g2-iu\\/sl Firmware -
Hikvision Ds-2cd2166g2-i\\(su\\) Firmware -
Hikvision Ds-2cd2186g2-i\\(su\\) Firmware -
Hikvision Ds-2cd2186g2-isu Firmware -
Hikvision Ds-2cd2326g2-isu\\/sl Firmware -
Hikvision Ds-2cd2346g2-isu\\/sl Firmware -
Hikvision Ds-2cd2366g2-i\\(u\\) Firmware -
Hikvision Ds-2cd2366g2-isu\\/sl Firmware -
Hikvision Ds-2cd2386g2-i\\(u\\) Firmware -
Hikvision Ds-2cd2386g2-isu\\/sl Firmware -
Hikvision Ds-2cd2426g2-i Firmware -
Hikvision Ds-2cd2446g2-i Firmware -
Hikvision Ds-2cd2526g2-i\\(s\\) Firmware -
Hikvision Ds-2cd2526g2-is Firmware -
Hikvision Ds-2cd2546g2-i\\(s\\) Firmware -
Hikvision Ds-2cd2566g2-i\\(s\\) Firmware -
Hikvision Ds-2cd2586g2-i\\(s\\) Firmware -
1 Metasploit module
31 Github repositories
2 Articles
9
CVSSv2
CVE-2013-4975
Hikvision DS-2CD7153-E IP Camera has Privilege Escalation
Hikvision Ds-2cd7153-e Firmware 4.1.0 B130111
1 EDB exploit
2 Github repositories
7.5
CVSSv2
CVE-2013-4976
Hikvision DS-2CD7153-E IP Camera has security bypass via hardcoded credentials
Hikvision Ds-2cd7153-e Firmware -
1 EDB exploit
7.5
CVSSv2
CVE-2018-6414
A buffer overflow vulnerability in the web server of some Hikvision IP Cameras allows an malicious user to send a specially crafted message to affected devices. Due to the insufficient input validation, successful exploit can corrupt memory and lead to arbitrary code execution or...
Hikvision Ip Cameras -
3.3
CVSSv2
CVE-2017-14953
HikVision Wi-Fi IP cameras, when used in a wired configuration, allow physically proximate malicious users to trigger association with an arbitrary access point by leveraging a default SSID with no WiFi encryption or authentication. NOTE: Vendor states that this is not a vulnerab...
Hikvision Ds-2cd2432f-iw Firmware
7.5
CVSSv2
CVE-2017-7921
An Improper Authentication issue exists in Hikvision DS-2CD2xx2F-I Series V5.2.0 build 140721 to V5.4.0 build 160530, DS-2CD2xx0F-I Series V5.2.0 build 140721 to V5.4.0 Build 160401, DS-2CD2xx2FWD Series V5.3.1 build 150410 to V5.4.4 Build 161125, DS-2CD4x2xFWD Series V5.2.0 buil...
Hikvision Ds-2cd2732f-i\\(s\\) Firmware -
Hikvision Ds-2cd2712f-i\\(s\\) Firmware -
Hikvision Ds-2cd2212-i5 Firmware -
Hikvision Ds-2cd2232-i5 Firmware -
Hikvision Ds-2cd4012f-\\(a\\) Firmware -
Hikvision Ds-2cd4012f-\\(p\\) Firmware -
Hikvision Ds-2cd4032fwd-\\(w\\) Firmware -
Hikvision Ds-2cd4112f-i\\(z\\) Firmware -
Hikvision Ds-2cd4112fwd-i\\(z\\) Firmware -
Hikvision Ds-2cd4212f-i\\(h\\) Firmware -
Hikvision Ds-2cd4212f-i\\(s\\) Firmware -
Hikvision Ds-2cd4312f-i\\(z\\) Firmware -
Hikvision Ds-2cd4312f-i\\(h\\) Firmware -
Hikvision Ds-2cd2412f-i\\(w\\) Firmware -
Hikvision Ds-2cd2432f-i\\(w\\) Firmware -
Hikvision Ds-2cd2112-i Firmware -
Hikvision Ds-2cd2032-i Firmware -
Hikvision Ds-2cd4012fwd-\\(p\\) Firmware -
Hikvision Ds-2cd4012fwd-\\(w\\) Firmware -
Hikvision Ds-2cd4032fwd-\\(a\\) Firmware -
Hikvision Ds-2cd4032fwd-\\(p\\) Firmware -
Hikvision Ds-2cd4132fwd-i\\(z\\) Firmware -
2 Metasploit modules
17 Github repositories
5
CVSSv2
CVE-2014-0160
The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 prior to 1.0.1g do not properly handle Heartbeat Extension packets, which allows remote malicious users to obtain sensitive information from process memory via crafted packets that trigger a buffer over-read, as demonstrat...
Openssl Openssl
Filezilla-project Filezilla Server
Siemens Application Processing Engine Firmware 2.0
Siemens Cp 1543-1 Firmware 1.1
Siemens Simatic S7-1500 Firmware 1.5
Siemens Simatic S7-1500t Firmware 1.5
Siemens Elan-8.2
Siemens Wincc Open Architecture 3.12
Intellian V100 Firmware 1.20
Intellian V100 Firmware 1.21
Intellian V100 Firmware 1.24
Intellian V60 Firmware 1.15
Intellian V60 Firmware 1.25
Mitel Micollab 6.0
Mitel Micollab 7.0
Mitel Micollab 7.1
Mitel Micollab 7.2
Mitel Micollab 7.3.0.104
Mitel Micollab 7.3
Mitel Mivoice 1.1.3.3
Mitel Mivoice 1.2.0.11
Mitel Mivoice 1.3.2.2
4 EDB exploits
2 Nmap scripts
309 Github repositories
4 Articles
10
CVSSv2
CVE-2013-4977
Buffer overflow in the RTSP Packet Handler in Hikvision DS-2CD7153-E IP camera with firmware 4.1.0 b130111 (Jan 2013), and possibly other devices, allows remote malicious users to cause a denial of service (device crash and reboot) and possibly execute arbitrary code via a long s...
Hikvision Ds-2cd7153-e Firmware 4.1.0 B130111
Hikvision Ds-2cd7153-e -
1 EDB exploit
1 Article
NA
CVE-2013-49773
Core Security Technologies Advisory - Hikvision IP Cameras suffer from buffer overflow, authentication bypass, hard-coded credential, and privilege escalation vulnerabilities.
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
firewall
CVE-2024-35649
stored XSS
CVE-2022-28654
CVE-2020-35153
CVE-2024-27348
CVE-2022-28652
local users
CVE-2017-3506
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started