← voltar
CVE-2025-66176

CVE-2025-66176

CVSS 8.8 HIGHEPSS 0.5%CWE-121
There is a Stack overflow Vulnerability in the device Search and Discovery feature of Hikvision Access Control Products. If exploited, an attacker on the same local area network (LAN) could cause the device to malfunction by sending specially crafted packets to an unpatched device.
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Produtos afetados
Hikvision · DS-K1T201A/K1T105AHikvision · DS-K1T320/DS-K1T321Hikvision · DS-K1T323/DS-K1T510Hikvision · DS-K1T331Hikvision · DS-K1T341A/K1T341BHikvision · DS-K1T341CHikvision · DS-K1T342/K1T343/K1T344/DS-K1T6QT-F72/F43Hikvision · DS-K1T670/K1T673Hikvision · DS-K1T671/K5671Hikvision · DS-K1T672Hikvision · DS-K1T680Hikvision · DS-K1T8003Hikvision · DS-K1T8003/8004Hikvision · DS-K1T8005/DS-K1T808Hikvision · DS-K1T804AHikvision · DS-K1T804BHikvision · DS-K1T981Hikvision · DS-K5033

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://www.hikvision.com/en/support/cybersecurity/security-advisory/buffer-overflow-vulnerabilities-in-some-hikvision-products/https://www.talosintelligence.com/vulnerability_reports/TALOS-2025-2281