Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
hikvision ip cameras - vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2018-6414
A buffer overflow vulnerability in the web server of some Hikvision IP Cameras allows an malicious user to send a specially crafted message to affected devices. Due to the insufficient input validation, successful exploit can corrupt memory and lead to arbitrary code execution or...
Hikvision Ip Cameras -
NA
CVE-2013-4977
Buffer overflow in the RTSP Packet Handler in Hikvision DS-2CD7153-E IP camera with firmware 4.1.0 b130111 (Jan 2013), and possibly other devices, allows remote malicious users to cause a denial of service (device crash and reboot) and possibly execute arbitrary code via a long s...
Hikvision Ds-2cd7153-e Firmware 4.1.0 B130111
Hikvision Ds-2cd7153-e -
1 EDB exploit
1 Article
9.8
CVSSv3
CVE-2013-4976
Hikvision DS-2CD7153-E IP Camera has security bypass via hardcoded credentials
Hikvision Ds-2cd7153-e Firmware -
1 EDB exploit
9.8
CVSSv3
CVE-2021-36260
A command injection vulnerability in the web server of some Hikvision product. Due to the insufficient input validation, attacker can exploit the vulnerability to launch a command injection attack by sending some messages with malicious commands.
Hikvision Ds-2cd2026g2-iu/sl Firmware -
Hikvision Ds-2cd2046g2-iu/sl Firmware -
Hikvision Ds-2cd2066g2-i(u) Firmware -
Hikvision Ds-2cd2066g2-iu/sl Firmware -
Hikvision Ds-2cd2086g2-i(u) Firmware -
Hikvision Ds-2cd2086g2-iu/sl Firmware -
Hikvision Ds-2cd2166g2-i(su) Firmware -
Hikvision Ds-2cd2186g2-i(su) Firmware -
Hikvision Ds-2cd2186g2-isu Firmware -
Hikvision Ds-2cd2326g2-isu/sl Firmware -
Hikvision Ds-2cd2346g2-isu/sl Firmware -
Hikvision Ds-2cd2366g2-i(u) Firmware -
Hikvision Ds-2cd2366g2-isu/sl Firmware -
Hikvision Ds-2cd2386g2-i(u) Firmware -
Hikvision Ds-2cd2386g2-isu/sl Firmware -
Hikvision Ds-2cd2426g2-i Firmware -
Hikvision Ds-2cd2446g2-i Firmware -
Hikvision Ds-2cd2526g2-i(s) Firmware -
Hikvision Ds-2cd2526g2-is Firmware -
Hikvision Ds-2cd2546g2-i(s) Firmware -
Hikvision Ds-2cd2566g2-i(s) Firmware -
Hikvision Ds-2cd2586g2-i(s) Firmware -
1 Metasploit module
31 Github repositories
2 Articles
8.8
CVSSv3
CVE-2013-4975
Hikvision DS-2CD7153-E IP Camera has Privilege Escalation
Hikvision Ds-2cd7153-e Firmware 4.1.0 B130111
1 EDB exploit
2 Github repositories
10
CVSSv3
CVE-2017-7921
An Improper Authentication issue exists in Hikvision DS-2CD2xx2F-I Series V5.2.0 build 140721 to V5.4.0 build 160530, DS-2CD2xx0F-I Series V5.2.0 build 140721 to V5.4.0 Build 160401, DS-2CD2xx2FWD Series V5.3.1 build 150410 to V5.4.4 Build 161125, DS-2CD4x2xFWD Series V5.2.0 buil...
Hikvision Ds-2cd2032-i Firmware -
Hikvision Ds-2cd2112-i Firmware -
Hikvision Ds-2cd2132-i Firmware -
Hikvision Ds-2cd2212-i5 Firmware -
Hikvision Ds-2cd2232-i5 Firmware -
Hikvision Ds-2cd2312-i Firmware -
Hikvision Ds-2cd2332-i Firmware -
Hikvision Ds-2cd2412f-i(w) Firmware -
Hikvision Ds-2cd2432f-i(w) Firmware -
Hikvision Ds-2cd2512f-i(s) Firmware -
Hikvision Ds-2cd2532f-i(s) Firmware -
Hikvision Ds-2cd2612f-i(s) Firmware -
Hikvision Ds-2cd2632f-i(s) Firmware -
Hikvision Ds-2cd2712f-i(s) Firmware -
Hikvision Ds-2cd2732f-i(s) Firmware -
Hikvision Ds-2cd2t32-i3 Firmware -
Hikvision Ds-2cd2t32-i5 Firmware -
Hikvision Ds-2cd2t32-i8 Firmware -
Hikvision Ds-2cd4012f-(a) Firmware -
Hikvision Ds-2cd4012f-(p) Firmware -
Hikvision Ds-2cd4012f-(w) Firmware -
Hikvision Ds-2cd4012fwd-(a) Firmware -
2 Metasploit modules
17 Github repositories
6.5
CVSSv3
CVE-2017-14953
HikVision Wi-Fi IP cameras, when used in a wired configuration, allow physically proximate malicious users to trigger association with an arbitrary access point by leveraging a default SSID with no WiFi encryption or authentication. NOTE: Vendor states that this is not a vulnerab...
Hikvision Ds-2cd2432f-iw Firmware
NA
CVE-2013-49773
Core Security Technologies Advisory - Hikvision IP Cameras suffer from buffer overflow, authentication bypass, hard-coded credential, and privilege escalation vulnerabilities.
NA
CVE-2021-36360
Unauthenticated command injection in a variety of Hikvision IP cameras. This vulnerability was reportedly added to the Moobot botnet in December, and continues to be actively exploited.
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started