Lucene search
K

371 matches found

NVD
NVD
added 2025/12/19 7:16 a.m.5 views

CVE-2025-66173

There is a privilege escalation vulnerability in some Hikvision DVR products. Due to the improper implementation of authentication for the serial port, an attacker with physical access could exploit this vulnerability by connecting to the affected products and gaining access to an unrestricted...

6.2CVSS0.00188EPSS
Exploits0References1
NVD
NVD
added 2025/12/19 7:16 a.m.4 views

CVE-2025-66174

There is an improper authentication vulnerability in some Hikvision DVR products. Due to the improper implementation of authentication for the serial port, an attacker with physical access could exploit this vulnerability by connecting to the affected products and run a series of commands...

6.8CVSS0.00311EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/19 6:39 a.m.5 views

CVE-2025-66174

There is an improper authentication vulnerability in some Hikvision DVR products. Due to the improper implementation of authentication for the serial port, an attacker with physical access could exploit this vulnerability by connecting to the affected products and run a series of commands...

6.5CVSS6.3AI score0.00311EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/19 6:39 a.m.5 views

EUVD-2025-204451

There is an improper authentication vulnerability in some Hikvision DVR products. Due to the improper implementation of authentication for the serial port, an attacker with physical access could exploit this vulnerability by connecting to the affected products and run a series of commands...

6.5CVSS6.2AI score0.00311EPSS
Exploits0References2
CVE
CVE
added 2025/12/19 6:39 a.m.14 views

CVE-2025-66174

CVE-2025-66174 describes an improper authentication vulnerability in certain Hikvision DVRs related to serial-port authentication. An attacker with physical access could connect to affected devices and execute commands due to the flawed authentication implementation. The vulnerability is document...

6.8CVSS6.3AI score0.00311EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/12/19 6:39 a.m.30 views

CVE-2025-66174

There is an improper authentication vulnerability in some Hikvision DVR products. Due to the improper implementation of authentication for the serial port, an attacker with physical access could exploit this vulnerability by connecting to the affected products and run a series of commands...

6.5CVSS0.00311EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/19 6:39 a.m.5 views

EUVD-2025-204452

There is a privilege escalation vulnerability in some Hikvision DVR products. Due to the improper implementation of authentication for the serial port, an attacker with physical access could exploit this vulnerability by connecting to the affected products and gaining access to an unrestricted...

6.2CVSS6.5AI score0.00188EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/12/19 6:39 a.m.3 views

CVE-2025-66173

There is a privilege escalation vulnerability in some Hikvision DVR products. Due to the improper implementation of authentication for the serial port, an attacker with physical access could exploit this vulnerability by connecting to the affected products and gaining access to an unrestricted...

6.2CVSS6.6AI score0.00188EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/19 6:39 a.m.30 views

CVE-2025-66173

There is a privilege escalation vulnerability in some Hikvision DVR products. Due to the improper implementation of authentication for the serial port, an attacker with physical access could exploit this vulnerability by connecting to the affected products and gaining access to an unrestricted...

6.2CVSS0.00188EPSS
Exploits0References1
CVE
CVE
added 2025/12/19 6:39 a.m.23 views

CVE-2025-66173

There is a privilege-escalation vulnerability in Hikvision DVR products caused by improper authentication for the serial port. An attacker with physical access can connect to the affected device and gain access to an unrestricted shell environment. The issue is documented across multiple sources ...

6.2CVSS6.6AI score0.00188EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/12/19 12:0 a.m.5 views

Hikvision DVR DS-7204HGHI-F1 安全漏洞

Hikvision DVR DS-7204HGHI-F1 is a hard disk recorder from Hikvision, a Chinese company. A security vulnerability exists in the Hikvision DVR DS-7204HGHI-F1 that stems from improper serial port authentication, which could result in elevated privileges...

6.2CVSS6.8AI score0.00188EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/12/19 12:0 a.m.7 views

PT-2025-52415

There is a privilege escalation vulnerability in some Hikvision DVR products. Due to the improper implementation of authentication for the serial port, an attacker with physical access could exploit this vulnerability by connecting to the affected products and gaining access to an unrestricted...

6.2CVSS6.9AI score0.00188EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/12/19 12:0 a.m.5 views

Hikvision DVR DS-7204HGHI-F1 安全漏洞

The Hikvision DVR DS-7204HGHI-F1 is a hard disk recorder from Hikvision China. A security vulnerability exists in the Hikvision DVR DS-7204HGHI-F1 that originates from improper serial port authentication and could result in the execution of a series of commands...

6.8CVSS6.9AI score0.00311EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/12/19 12:0 a.m.5 views

PT-2025-52416

There is an improper authentication vulnerability in some Hikvision DVR products. Due to the improper implementation of authentication for the serial port, an attacker with physical access could exploit this vulnerability by connecting to the affected products and run a series of commands...

6.5CVSS6.7AI score0.00311EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/12/10 8:36 a.m.4 views

CVE-2025-41696

An attacker can use an undocumented UART port on the PCB as a side-channel with the user hardcoded credentials obtained from CVE-2025-41692 to gain read access to parts of the filesystem of the device...

6.8CVSS6.9AI score0.00259EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/10 8:36 a.m.5 views

CVE-2025-41697

An attacker can use an undocumented UART port on the PCB as a side-channel to get root access e.g. with the credentials obtained from CVE-2025-41692...

6.8CVSS6.9AI score0.00259EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/09 6:30 p.m.5 views

EUVD-2025-201893

An attacker can use an undocumented UART port on the PCB as a side-channel to get root access e.g. with the credentials obtained from CVE-2025-41692...

6.8CVSS6.5AI score0.00259EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/12/09 8:13 a.m.3 views

CVE-2025-41696 Hardcoded User Password

An attacker can use an undocumented UART port on the PCB as a side-channel with the user hardcoded credentials obtained from CVE-2025-41692 to gain read access to parts of the filesystem of the device...

4.6CVSS6.5AI score0.00184EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/09 8:13 a.m.35 views

CVE-2025-41696 Hardcoded User Password

An attacker can use an undocumented UART port on the PCB as a side-channel with the user hardcoded credentials obtained from CVE-2025-41692 to gain read access to parts of the filesystem of the device...

4.6CVSS0.00184EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.6 views

PT-2025-49815

An attacker can use an undocumented UART port on the PCB as a side-channel with the user hardcoded credentials obtained from CVE-2025-41692 to gain read access to parts of the filesystem of the device...

6.8CVSS6.9AI score0.00259EPSS
Exploits0References1
Rows per page
Query Builder