cvelistv5 - cve-2018-6414

CVE-2018-6414 (GCVE-0-2018-6414)

Vulnerability from cvelistv5 – Published: 2018-08-13 15:00 – Updated: 2024-08-05 06:01

Summary

Severity ?

No CVSS data available.

CWE

Buffer Overflow

Assigner

hikvision

References

URL

	Vendor	Product	Version
	hikvision	DS-2DE4xxxW,DS-2DE5xxxW,DS-2DE7xxxW	Affected: V5.5.6 build180408 and previous versions

FKIE_CVE-2018-6414

Vulnerability from fkie_nvd - Published: 2018-08-13 15:29 - Updated: 2024-11-21 04:10

Severity ?

9.8 (Critical) - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Summary

References

	URL	Tags
	hsrc@hikvision.com	https://www.hikvision.com/en/support/cybersecurity/security-advisory/security-notification--buffer-overflow-vulnerability-in-some-hik/
	af854a3a-2127-422b-91ae-364da2661108	https://www.hikvision.com/en/support/cybersecurity/security-advisory/security-notification--buffer-overflow-vulnerability-in-some-hik/

Impacted products

	Vendor	Product	Version
	hikvision	ip_cameras	-

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:hikvision:ip_cameras:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E10BA772-1E39-45EE-8C4C-8078AD6D9BD7",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A buffer overflow vulnerability in the web server of some Hikvision IP Cameras allows an attacker to send a specially crafted message to affected devices. Due to the insufficient input validation, successful exploit can corrupt memory and lead to arbitrary code execution or crash the process."
    },
    {
      "lang": "es",
      "value": "Una vulnerabilidad de desbordamiento de b\u00fafer en el servidor web de algunas c\u00e1maras IP de Hikvision permite a un atacante enviar un mensaje especialmente manipulado a los dispositivos afectados. Debido a la insuficiente validaci\u00f3n de entrada, su explotaci\u00f3n con \u00e9xito puede corromper la memoria y conducir a la ejecuci\u00f3n arbitraria del c\u00f3digo o cerrar el proceso de manera inesperada."
    }
  ],
  "id": "CVE-2018-6414",
  "lastModified": "2024-11-21T04:10:40.100",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 7.5,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ],
    "cvssMetricV30": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 9.8,
          "baseSeverity": "CRITICAL",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.0"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2018-08-13T15:29:00.527",
  "references": [
    {
      "source": "hsrc@hikvision.com",
      "url": "https://www.hikvision.com/en/support/cybersecurity/security-advisory/security-notification--buffer-overflow-vulnerability-in-some-hik/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://www.hikvision.com/en/support/cybersecurity/security-advisory/security-notification--buffer-overflow-vulnerability-in-some-hik/"
    }
  ],
  "sourceIdentifier": "hsrc@hikvision.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-119"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

VAR-201808-0810

Vulnerability from variot - Updated: 2023-12-18 13:08

A buffer overflow vulnerability in the web server of some Hikvision IP Cameras allows an attacker to send a specially crafted message to affected devices. Due to the insufficient input validation, successful exploit can corrupt memory and lead to arbitrary code execution or crash the process. plural Hikvision IP Cameras The product contains a buffer error vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. HikVision IP Cameras is a network camera product from China Hikvision.

Hikvision network camera has a buffer overflow vulnerability, which is caused by insufficient input verification

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-201808-0810",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "ip cameras",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "hikvision",
        "version": null
      },
      {
        "model": "ip cameras",
        "scope": null,
        "trust": 0.8,
        "vendor": "hikvision digital",
        "version": null
      },
      {
        "model": "ds-2cd1201-i",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.51"
      },
      {
        "model": "ds-2cd1201f-i",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.5"
      },
      {
        "model": "ds-2cd1201f-i",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.52"
      },
      {
        "model": "ds-2cd1211-i",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.51"
      },
      {
        "model": "ds-2cd1221",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.4"
      },
      {
        "model": "ds-2cd1221",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.5"
      },
      {
        "model": "ds-2cd1221",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.52"
      },
      {
        "model": "ds-2cd1301-i",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.51"
      },
      {
        "model": "ds-2cd1301f-i",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.5"
      },
      {
        "model": "ds-2cd1301f-i",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.52"
      },
      {
        "model": "ds-2cd1311-i",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.51"
      },
      {
        "model": "ds-2cd1321",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.4"
      },
      {
        "model": "ds-2cd1321",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.5"
      },
      {
        "model": "ds-2cd1321",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.52"
      },
      {
        "model": "ds-2cd1x25",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.0"
      },
      {
        "model": "ds-2cd1x25",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.2"
      },
      {
        "model": "ds-2cd1x25",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.4"
      },
      {
        "model": "ds-2cd1x25",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.52"
      },
      {
        "model": "ds-2cd1x25",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.6"
      },
      {
        "model": "ds-2cd1x31",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.4"
      },
      {
        "model": "ds-2cd1x31",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.5"
      },
      {
        "model": "ds-2cd1x31",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.52"
      },
      {
        "model": "ds-2cd2x21",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.0"
      },
      {
        "model": "ds-2cd2x21",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.2"
      },
      {
        "model": "ds-2cd2x21",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.4"
      },
      {
        "model": "ds-2cd2x21",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.52"
      },
      {
        "model": "ds-2cd2x21",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.6"
      },
      {
        "model": "ds-2cd2x25",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.0"
      },
      {
        "model": "ds-2cd2x25",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.2"
      },
      {
        "model": "ds-2cd2x25",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.4"
      },
      {
        "model": "ds-2cd2x25",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.52"
      },
      {
        "model": "ds-2cd2x25",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.6"
      },
      {
        "model": "ds-2cd2x26",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.0"
      },
      {
        "model": "ds-2cd2x26",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.2"
      },
      {
        "model": "ds-2cd2x26",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.4"
      },
      {
        "model": "ds-2cd2x26",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.52"
      },
      {
        "model": "ds-2cd2x26",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.6"
      },
      {
        "model": "ds-2cd2x47",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.0"
      },
      {
        "model": "ds-2cd2x47",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.2"
      },
      {
        "model": "ds-2cd2x47",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.3"
      },
      {
        "model": "ds-2cd2x47",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.52"
      },
      {
        "model": "ds-2cd2x66",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.0"
      },
      {
        "model": "ds-2cd2x66",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.2"
      },
      {
        "model": "ds-2cd2x66",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.3"
      },
      {
        "model": "ds-2cd2x66",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.51"
      },
      {
        "model": "ds-2cd2x66",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.52"
      },
      {
        "model": "ds-2cd2x66",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.60"
      },
      {
        "model": "ds-2cd2x86",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.0"
      },
      {
        "model": "ds-2cd2x86",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.2"
      },
      {
        "model": "ds-2cd2x86",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.3"
      },
      {
        "model": "ds-2cd2x86",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.51"
      },
      {
        "model": "ds-2cd2x86",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.52"
      },
      {
        "model": "ds-2cd2x86",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.60"
      },
      {
        "model": "ds-2cd2xx5",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.0"
      },
      {
        "model": "ds-2cd2xx5",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.2"
      },
      {
        "model": "ds-2cd2xx5",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.3"
      },
      {
        "model": "ds-2cd2xx5",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.52"
      },
      {
        "model": "ds-2cd2xx6",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.0"
      },
      {
        "model": "ds-2cd2xx6",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.2"
      },
      {
        "model": "ds-2cd2xx6",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.3"
      },
      {
        "model": "ds-2cd2xx6",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.52"
      },
      {
        "model": "ds-2cd3220",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.4"
      },
      {
        "model": "ds-2cd3220",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.5"
      },
      {
        "model": "ds-2cd3220",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.52"
      },
      {
        "model": "ds-2cd3311 -i",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.5"
      },
      {
        "model": "ds-2cd3311 -i",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.52"
      },
      {
        "model": "ds-2cd3x10-i",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.5"
      },
      {
        "model": "ds-2cd3x10-i",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.52"
      },
      {
        "model": "ds-2cd3x10f-i",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.5"
      },
      {
        "model": "ds-2cd3x10f-i",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.52"
      },
      {
        "model": "ds-2cd3x20",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.4"
      },
      {
        "model": "ds-2cd3x20",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.5"
      },
      {
        "model": "ds-2cd3x20",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.52"
      },
      {
        "model": "ds-2cd3x21",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.0"
      },
      {
        "model": "ds-2cd3x21",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.2"
      },
      {
        "model": "ds-2cd3x21",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.4"
      },
      {
        "model": "ds-2cd3x21",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.52"
      },
      {
        "model": "ds-2cd3x21",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.6"
      },
      {
        "model": "ds-2cd3x25",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.0"
      },
      {
        "model": "ds-2cd3x25",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.2"
      },
      {
        "model": "ds-2cd3x25",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.4"
      },
      {
        "model": "ds-2cd3x25",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.52"
      },
      {
        "model": "ds-2cd3x25",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.6"
      },
      {
        "model": "ds-2cd3x26",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.0"
      },
      {
        "model": "ds-2cd3x26",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.2"
      },
      {
        "model": "ds-2cd3x26",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.4"
      },
      {
        "model": "ds-2cd3x26",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.52"
      },
      {
        "model": "ds-2cd3x26",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.6"
      },
      {
        "model": "ds-2cd3x47",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.0"
      },
      {
        "model": "ds-2cd3x47",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.2"
      },
      {
        "model": "ds-2cd3x47",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.3"
      },
      {
        "model": "ds-2cd3x47",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.52"
      },
      {
        "model": "ds-2cd3x66",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.0"
      },
      {
        "model": "ds-2cd3x66",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.2"
      },
      {
        "model": "ds-2cd3x66",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.3"
      },
      {
        "model": "ds-2cd3x66",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.51"
      },
      {
        "model": "ds-2cd3x66",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.52"
      },
      {
        "model": "ds-2cd3x66",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.60"
      },
      {
        "model": "ds-2cd3x86",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.0"
      },
      {
        "model": "ds-2cd3x86",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.2"
      },
      {
        "model": "ds-2cd3x86",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.3"
      },
      {
        "model": "ds-2cd3x86",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.51"
      },
      {
        "model": "ds-2cd3x86",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.52"
      },
      {
        "model": "ds-2cd3x86",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.60"
      },
      {
        "model": "ds-2cd3xx5",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.0"
      },
      {
        "model": "ds-2cd3xx5",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.2"
      },
      {
        "model": "ds-2cd3xx5",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.3"
      },
      {
        "model": "ds-2cd3xx5",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.52"
      },
      {
        "model": "ds-2cd3xx6",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.0"
      },
      {
        "model": "ds-2cd3xx6",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.2"
      },
      {
        "model": "ds-2cd3xx6",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.3"
      },
      {
        "model": "ds-2cd3xx6",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.52"
      },
      {
        "model": "ds-2xm6614-i",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.51"
      },
      {
        "model": "ds-2xm6624-i",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.4"
      },
      {
        "model": "ds-2xm6624-i",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.5"
      },
      {
        "model": "ds-2xm6624-i",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.52"
      },
      {
        "model": "ds-ipc-b11-i",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.51"
      },
      {
        "model": "ds-ipc-b12-i",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.4"
      },
      {
        "model": "ds-ipc-b12-i",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.5"
      },
      {
        "model": "ds-ipc-b12-i",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.52"
      },
      {
        "model": "ds-ipc-b12h-i",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.0"
      },
      {
        "model": "ds-ipc-b12h-i",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.2"
      },
      {
        "model": "ds-ipc-b12h-i",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.4"
      },
      {
        "model": "ds-ipc-b12h-i",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.52"
      },
      {
        "model": "ds-ipc-b12h-i",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.6"
      },
      {
        "model": "ds-ipc-t11-i",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.51"
      },
      {
        "model": "ds-ipc-t12-i",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.4"
      },
      {
        "model": "ds-ipc-t12-i",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.5"
      },
      {
        "model": "ds-ipc-t12-i",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.52"
      },
      {
        "model": "ds-ipc-t12h-i",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.0"
      },
      {
        "model": "ds-ipc-t12h-i",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.2"
      },
      {
        "model": "ds-ipc-t12h-i",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.4"
      },
      {
        "model": "ds-ipc-t12h-i",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.52"
      },
      {
        "model": "ds-ipc-t12h-i",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "hikvision",
        "version": "v5.5.6"
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2018-17379"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2018-009357"
      },
      {
        "db": "NVD",
        "id": "CVE-2018-6414"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201808-338"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:h:hikvision:ip_cameras:-:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2018-6414"
      }
    ]
  },
  "cve": "CVE-2018-6414",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "acInsufInfo": false,
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "NVD",
            "availabilityImpact": "PARTIAL",
            "baseScore": 7.5,
            "confidentialityImpact": "PARTIAL",
            "exploitabilityScore": 10.0,
            "impactScore": 6.4,
            "integrityImpact": "PARTIAL",
            "obtainAllPrivilege": false,
            "obtainOtherPrivilege": false,
            "obtainUserPrivilege": false,
            "severity": "HIGH",
            "trust": 1.0,
            "userInteractionRequired": false,
            "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          {
            "acInsufInfo": null,
            "accessComplexity": "Low",
            "accessVector": "Network",
            "authentication": "None",
            "author": "NVD",
            "availabilityImpact": "Partial",
            "baseScore": 7.5,
            "confidentialityImpact": "Partial",
            "exploitabilityScore": null,
            "id": "CVE-2018-6414",
            "impactScore": null,
            "integrityImpact": "Partial",
            "obtainAllPrivilege": null,
            "obtainOtherPrivilege": null,
            "obtainUserPrivilege": null,
            "severity": "High",
            "trust": 0.8,
            "userInteractionRequired": null,
            "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          {
            "accessComplexity": "HIGH",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "CNVD",
            "availabilityImpact": "COMPLETE",
            "baseScore": 7.3,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 4.9,
            "id": "CNVD-2018-17379",
            "impactScore": 9.5,
            "integrityImpact": "PARTIAL",
            "severity": "HIGH",
            "trust": 0.6,
            "vectorString": "AV:N/AC:H/Au:N/C:C/I:P/A:C",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "VULHUB",
            "availabilityImpact": "PARTIAL",
            "baseScore": 7.5,
            "confidentialityImpact": "PARTIAL",
            "exploitabilityScore": 10.0,
            "id": "VHN-136446",
            "impactScore": 6.4,
            "integrityImpact": "PARTIAL",
            "severity": "HIGH",
            "trust": 0.1,
            "vectorString": "AV:N/AC:L/AU:N/C:P/I:P/A:P",
            "version": "2.0"
          }
        ],
        "cvssV3": [
          {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "author": "NVD",
            "availabilityImpact": "HIGH",
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "exploitabilityScore": 3.9,
            "impactScore": 5.9,
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "trust": 1.0,
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          {
            "attackComplexity": "Low",
            "attackVector": "Network",
            "author": "NVD",
            "availabilityImpact": "High",
            "baseScore": 9.8,
            "baseSeverity": "Critical",
            "confidentialityImpact": "High",
            "exploitabilityScore": null,
            "id": "CVE-2018-6414",
            "impactScore": null,
            "integrityImpact": "High",
            "privilegesRequired": "None",
            "scope": "Unchanged",
            "trust": 0.8,
            "userInteraction": "None",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          }
        ],
        "severity": [
          {
            "author": "NVD",
            "id": "CVE-2018-6414",
            "trust": 1.8,
            "value": "CRITICAL"
          },
          {
            "author": "CNVD",
            "id": "CNVD-2018-17379",
            "trust": 0.6,
            "value": "HIGH"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-201808-338",
            "trust": 0.6,
            "value": "CRITICAL"
          },
          {
            "author": "VULHUB",
            "id": "VHN-136446",
            "trust": 0.1,
            "value": "HIGH"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2018-17379"
      },
      {
        "db": "VULHUB",
        "id": "VHN-136446"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2018-009357"
      },
      {
        "db": "NVD",
        "id": "CVE-2018-6414"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201808-338"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "A buffer overflow vulnerability in the web server of some Hikvision IP Cameras allows an attacker to send a specially crafted message to affected devices. Due to the insufficient input validation, successful exploit can corrupt memory and lead to arbitrary code execution or crash the process. plural Hikvision IP Cameras The product contains a buffer error vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. HikVision IP Cameras is a network camera product from China Hikvision. \n\nHikvision network camera has a buffer overflow vulnerability, which is caused by insufficient input verification",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2018-6414"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2018-009357"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2018-17379"
      },
      {
        "db": "VULHUB",
        "id": "VHN-136446"
      }
    ],
    "trust": 2.25
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2018-6414",
        "trust": 3.1
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2018-009357",
        "trust": 0.8
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201808-338",
        "trust": 0.7
      },
      {
        "db": "CNVD",
        "id": "CNVD-2018-17379",
        "trust": 0.6
      },
      {
        "db": "VULHUB",
        "id": "VHN-136446",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2018-17379"
      },
      {
        "db": "VULHUB",
        "id": "VHN-136446"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2018-009357"
      },
      {
        "db": "NVD",
        "id": "CVE-2018-6414"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201808-338"
      }
    ]
  },
  "id": "VAR-201808-0810",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2018-17379"
      },
      {
        "db": "VULHUB",
        "id": "VHN-136446"
      }
    ],
    "trust": 1.7
  },
  "iot_taxonomy": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "category": [
          "ICS",
          "Network device"
        ],
        "sub_category": null,
        "trust": 0.6
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2018-17379"
      }
    ]
  },
  "last_update_date": "2023-12-18T13:08:22.296000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "HSRC-201808-01",
        "trust": 0.8,
        "url": "http://www.hikvision.com/en/support/cybersecurity-center/security-advisory/431181228784397"
      },
      {
        "title": "Hikvision IP Fixing actions for camera buffer error vulnerability",
        "trust": 0.6,
        "url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=83870"
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2018-009357"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201808-338"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "CWE-119",
        "trust": 1.9
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-136446"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2018-009357"
      },
      {
        "db": "NVD",
        "id": "CVE-2018-6414"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 1.7,
        "url": "https://www.hikvision.com/en/support/cybersecurity/security-advisory/security-notification--buffer-overflow-vulnerability-in-some-hik/"
      },
      {
        "trust": 0.8,
        "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-6414"
      },
      {
        "trust": 0.8,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2018-6414"
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-136446"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2018-009357"
      },
      {
        "db": "NVD",
        "id": "CVE-2018-6414"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201808-338"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "CNVD",
        "id": "CNVD-2018-17379"
      },
      {
        "db": "VULHUB",
        "id": "VHN-136446"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2018-009357"
      },
      {
        "db": "NVD",
        "id": "CVE-2018-6414"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201808-338"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2018-09-27T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2018-17379"
      },
      {
        "date": "2018-08-13T00:00:00",
        "db": "VULHUB",
        "id": "VHN-136446"
      },
      {
        "date": "2018-11-16T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2018-009357"
      },
      {
        "date": "2018-08-13T15:29:00.527000",
        "db": "NVD",
        "id": "CVE-2018-6414"
      },
      {
        "date": "2018-08-14T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201808-338"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2018-09-07T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2018-17379"
      },
      {
        "date": "2020-09-24T00:00:00",
        "db": "VULHUB",
        "id": "VHN-136446"
      },
      {
        "date": "2018-11-16T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2018-009357"
      },
      {
        "date": "2020-09-24T21:15:15.090000",
        "db": "NVD",
        "id": "CVE-2018-6414"
      },
      {
        "date": "2020-09-25T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201808-338"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "remote",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201808-338"
      }
    ],
    "trust": 0.6
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "plural  Hikvision IP Cameras Product buffer error vulnerability",
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2018-009357"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "buffer error",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201808-338"
      }
    ],
    "trust": 0.6
  }
}

GHSA-599G-W84X-HFM9

Vulnerability from github – Published: 2022-05-13 01:16 – Updated: 2022-05-13 01:16

Details

Severity ?

9.8 (Critical)


                  
                    CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2018-6414"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-119"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2018-08-13T15:29:00Z",
    "severity": "CRITICAL"
  },
  "details": "A buffer overflow vulnerability in the web server of some Hikvision IP Cameras allows an attacker to send a specially crafted message to affected devices. Due to the insufficient input validation, successful exploit can corrupt memory and lead to arbitrary code execution or crash the process.",
  "id": "GHSA-599g-w84x-hfm9",
  "modified": "2022-05-13T01:16:07Z",
  "published": "2022-05-13T01:16:07Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-6414"
    },
    {
      "type": "WEB",
      "url": "https://www.hikvision.com/en/support/cybersecurity/security-advisory/security-notification--buffer-overflow-vulnerability-in-some-hik"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

GSD-2018-6414

Vulnerability from gsd - Updated: 2023-12-13 01:22

Details

Aliases

CVE-2018-6414

Aliases

CVE-2018-6414

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2018-6414",
    "description": "A buffer overflow vulnerability in the web server of some Hikvision IP Cameras allows an attacker to send a specially crafted message to affected devices. Due to the insufficient input validation, successful exploit can corrupt memory and lead to arbitrary code execution or crash the process.",
    "id": "GSD-2018-6414"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2018-6414"
      ],
      "details": "A buffer overflow vulnerability in the web server of some Hikvision IP Cameras allows an attacker to send a specially crafted message to affected devices. Due to the insufficient input validation, successful exploit can corrupt memory and lead to arbitrary code execution or crash the process.",
      "id": "GSD-2018-6414",
      "modified": "2023-12-13T01:22:35.037935Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "hsrc@hikvision.com",
        "ID": "CVE-2018-6414",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "DS-2DE4xxxW,DS-2DE5xxxW,DS-2DE7xxxW",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "V5.5.6 build180408 and previous versions"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "hikvision"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "A buffer overflow vulnerability in the web server of some Hikvision IP Cameras allows an attacker to send a specially crafted message to affected devices. Due to the insufficient input validation, successful exploit can corrupt memory and lead to arbitrary code execution or crash the process."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "Buffer Overflow"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://www.hikvision.com/en/support/cybersecurity/security-advisory/security-notification--buffer-overflow-vulnerability-in-some-hik/",
            "refsource": "CONFIRM",
            "url": "https://www.hikvision.com/en/support/cybersecurity/security-advisory/security-notification--buffer-overflow-vulnerability-in-some-hik/"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:h:hikvision:ip_cameras:-:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "hsrc@hikvision.com",
          "ID": "CVE-2018-6414"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "A buffer overflow vulnerability in the web server of some Hikvision IP Cameras allows an attacker to send a specially crafted message to affected devices. Due to the insufficient input validation, successful exploit can corrupt memory and lead to arbitrary code execution or crash the process."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-119"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.hikvision.com/en/support/cybersecurity/security-advisory/security-notification--buffer-overflow-vulnerability-in-some-hik/",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "https://www.hikvision.com/en/support/cybersecurity/security-advisory/security-notification--buffer-overflow-vulnerability-in-some-hik/"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 7.5,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 6.4,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": false
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "exploitabilityScore": 3.9,
          "impactScore": 5.9
        }
      },
      "lastModifiedDate": "2020-09-24T21:15Z",
      "publishedDate": "2018-08-13T15:29Z"
    }
  }
}

CNVD-2018-17379

Vulnerability from cnvd - Published: 2018-09-27

Title

海康威视网络摄像机存在缓冲区溢出漏洞

Description

HikVision IP Cameras是中国海康威视（Hikvision）公司的网络摄像机产品。海康威视网络摄像机存在缓冲区溢出漏洞，该漏洞源于未能充分的验证输入信息。攻击者可通过向受影响的设备发送特制的消息利用该漏洞损坏内存，执行任意代码或造成进程崩溃。

Severity

高

Formal description

厂商已发布了漏洞修复程序，请及时关注更新： http://www.hikvision.com/cn/support_det_591_i531.html

Impacted products

Name
['Hikvision DS-2CD3x66 V5.5.0', 'Hikvision DS-2CD3x66 V5.5.2', 'Hikvision DS-2CD3x66 V5.5.3', 'Hikvision DS-2CD3x66 V5.5.51', 'Hikvision DS-2CD3x66 V5.5.52', 'Hikvision DS-2CD3x66 V5.5.60', 'Hikvision DS-2CD3x86 V5.5.0', 'Hikvision DS-2CD3x86 V5.5.2', 'Hikvision DS-2CD3x86 V5.5.3', 'Hikvision DS-2CD3x86 V5.5.51', 'Hikvision DS-2CD3x86 V5.5.52', 'Hikvision DS-2CD3x86 V5.5.60', 'Hikvision DS-2CD2x66 V5.5.0', 'Hikvision DS-2CD2x66 V5.5.2', 'Hikvision DS-2CD2x66 V5.5.3', 'Hikvision DS-2CD2x66 V5.5.51', 'Hikvision DS-2CD2x66 V5.5.52', 'Hikvision DS-2CD2x66 V5.5.60', 'Hikvision DS-2CD2x86 V5.5.0', 'Hikvision DS-2CD2x86 V5.5.2', 'Hikvision DS-2CD2x86 V5.5.3', 'Hikvision DS-2CD2x86 V5.5.51', 'Hikvision DS-2CD2x86 V5.5.52', 'Hikvision DS-2CD2x86 V5.5.60', 'Hikvision DS-2CD3xx6 V5.5.0', 'Hikvision DS-2CD3xx6 V5.5.2', 'Hikvision DS-2CD3xx6 V5.5.3', 'Hikvision DS-2CD3xx6 V5.5.52', 'Hikvision DS-2CD3xx5 V5.5.0', 'Hikvision DS-2CD3xx5 V5.5.2', 'Hikvision DS-2CD3xx5 V5.5.3', 'Hikvision DS-2CD3xx5 V5.5.52', 'Hikvision DS-2CD2xx6 V5.5.0', 'Hikvision DS-2CD2xx6 V5.5.2', 'Hikvision DS-2CD2xx6 V5.5.3', 'Hikvision DS-2CD2xx6 V5.5.52', 'Hikvision DS-2CD2xx5 V5.5.0', 'Hikvision DS-2CD2xx5 V5.5.2', 'Hikvision DS-2CD2xx5 V5.5.3', 'Hikvision DS-2CD2xx5 V5.5.52', 'Hikvision DS-2CD3x47 V5.5.0', 'Hikvision DS-2CD3x47 V5.5.2', 'Hikvision DS-2CD3x47 V5.5.3', 'Hikvision DS-2CD3x47 V5.5.52', 'Hikvision DS-2CD2x47 V5.5.0', 'Hikvision DS-2CD2x47 V5.5.2', 'Hikvision DS-2CD2x47 V5.5.3', 'Hikvision DS-2CD2x47 V5.5.52', 'Hikvision DS-2XM6614-I V5.5.51', 'Hikvision DS-IPC-T11-I V5.5.51', 'Hikvision DS-IPC-B11-I V5.5.51', 'Hikvision DS-2CD1311-I V5.5.51', 'Hikvision DS-2CD1211-I V5.5.51', 'Hikvision DS-2CD1301-I V5.5.51', 'Hikvision DS-2CD1201-I V5.5.51', 'Hikvision DS-2CD3311(D)-I V5.5.5', 'Hikvision DS-2CD3311(D)-I V5.5.52', 'Hikvision DS-2CD3x10-I V5.5.5', 'Hikvision DS-2CD3x10-I V5.5.52', 'Hikvision DS-2CD3x10F-I V5.5.5', 'Hikvision DS-2CD3x10F-I V5.5.52', 'Hikvision DS-2CD1301F-I V5.5.5', 'Hikvision DS-2CD1301F-I V5.5.52', 'Hikvision DS-2CD1201F-I V5.5.5', 'Hikvision DS-2CD1201F-I V5.5.52', 'Hikvision DS-2CD3x25 V5.5.0', 'Hikvision DS-2CD3x25 V5.5.2', 'Hikvision DS-2CD3x25 V5.5.4', 'Hikvision DS-2CD3x25 V5.5.6', 'Hikvision DS-2CD3x25 V5.5.52', 'Hikvision DS-2CD3x26(B) V5.5.0', 'Hikvision DS-2CD3x26(B) V5.5.2', 'Hikvision DS-2CD3x26(B) V5.5.4', 'Hikvision DS-2CD3x26(B) V5.5.6', 'Hikvision DS-2CD3x26(B) V5.5.52', 'Hikvision DS-2CD3x21(B) V5.5.0', 'Hikvision DS-2CD3x21(B) V5.5.2', 'Hikvision DS-2CD3x21(B) V5.5.4', 'Hikvision DS-2CD3x21(B) V5.5.6', 'Hikvision DS-2CD3x21(B) V5.5.52', 'Hikvision DS-2CD2x21(B) V5.5.0', 'Hikvision DS-2CD2x21(B) V5.5.2', 'Hikvision DS-2CD2x21(B) V5.5.4', 'Hikvision DS-2CD2x21(B) V5.5.6', 'Hikvision DS-2CD2x21(B) V5.5.52', 'Hikvision DS-2CD2x25(D) V5.5.0', 'Hikvision DS-2CD2x25(D) V5.5.2', 'Hikvision DS-2CD2x25(D) V5.5.4', 'Hikvision DS-2CD2x25(D) V5.5.6', 'Hikvision DS-2CD2x25(D) V5.5.52', 'Hikvision DS-2CD2x26 V5.5.0', 'Hikvision DS-2CD2x26 V5.5.2', 'Hikvision DS-2CD2x26 V5.5.4', 'Hikvision DS-2CD2x26 V5.5.6', 'Hikvision DS-2CD2x26 V5.5.52', 'Hikvision DS-2CD1x25 V5.5.0', 'Hikvision DS-2CD1x25 V5.5.2', 'Hikvision DS-2CD1x25 V5.5.4', 'Hikvision DS-2CD1x25 V5.5.6', 'Hikvision DS-2CD1x25 V5.5.52', 'Hikvision DS-IPC-T12H-I V5.5.0', 'Hikvision DS-IPC-T12H-I V5.5.2', 'Hikvision DS-IPC-T12H-I V5.5.4', 'Hikvision DS-IPC-T12H-I V5.5.6', 'Hikvision DS-IPC-T12H-I V5.5.52', 'Hikvision DS-IPC-B12H-I V5.5.0', 'Hikvision DS-IPC-B12H-I V5.5.2', 'Hikvision DS-IPC-B12H-I V5.5.4', 'Hikvision DS-IPC-B12H-I V5.5.6', 'Hikvision DS-IPC-B12H-I V5.5.52', 'Hikvision DS-2CD3220(B) V5.5.4', 'Hikvision DS-2CD3220(B) V5.5.5', 'Hikvision DS-2CD3220(B) V5.5.52', 'Hikvision DS-2CD3x20(F) V5.5.4', 'Hikvision DS-2CD3x20(F) V5.5.5', 'Hikvision DS-2CD3x20(F) V5.5.52', 'Hikvision DS-2CD1x31 V5.5.4', 'Hikvision DS-2CD1x31 V5.5.5', 'Hikvision DS-2CD1x31 V5.5.52', 'Hikvision DS-2CD1221 V5.5.4', 'Hikvision DS-2CD1221 V5.5.5', 'Hikvision DS-2CD1221 V5.5.52', 'Hikvision DS-2CD1321 V5.5.4', 'Hikvision DS-2CD1321 V5.5.5', 'Hikvision DS-2CD1321 V5.5.52', 'Hikvision DS-2XM6624-I V5.5.4', 'Hikvision DS-2XM6624-I V5.5.5', 'Hikvision DS-2XM6624-I V5.5.52', 'Hikvision DS-IPC-T12-I V5.5.4', 'Hikvision DS-IPC-T12-I V5.5.5', 'Hikvision DS-IPC-T12-I V5.5.52', 'Hikvision DS-IPC-B12-I V5.5.4', 'Hikvision DS-IPC-B12-I V5.5.5', 'Hikvision DS-IPC-B12-I V5.5.52']

Name

['Hikvision DS-2CD3x66 V5.5.0', 'Hikvision DS-2CD3x66 V5.5.2', 'Hikvision DS-2CD3x66 V5.5.3', 'Hikvision DS-2CD3x66 V5.5.51', 'Hikvision DS-2CD3x66 V5.5.52', 'Hikvision DS-2CD3x66 V5.5.60', 'Hikvision DS-2CD3x86 V5.5.0', 'Hikvision DS-2CD3x86 V5.5.2', 'Hikvision DS-2CD3x86 V5.5.3', 'Hikvision DS-2CD3x86 V5.5.51', 'Hikvision DS-2CD3x86 V5.5.52', 'Hikvision DS-2CD3x86 V5.5.60', 'Hikvision DS-2CD2x66 V5.5.0', 'Hikvision DS-2CD2x66 V5.5.2', 'Hikvision DS-2CD2x66 V5.5.3', 'Hikvision DS-2CD2x66 V5.5.51', 'Hikvision DS-2CD2x66 V5.5.52', 'Hikvision DS-2CD2x66 V5.5.60', 'Hikvision DS-2CD2x86 V5.5.0', 'Hikvision DS-2CD2x86 V5.5.2', 'Hikvision DS-2CD2x86 V5.5.3', 'Hikvision DS-2CD2x86 V5.5.51', 'Hikvision DS-2CD2x86 V5.5.52', 'Hikvision DS-2CD2x86 V5.5.60', 'Hikvision DS-2CD3xx6 V5.5.0', 'Hikvision DS-2CD3xx6 V5.5.2', 'Hikvision DS-2CD3xx6 V5.5.3', 'Hikvision DS-2CD3xx6 V5.5.52', 'Hikvision DS-2CD3xx5 V5.5.0', 'Hikvision DS-2CD3xx5 V5.5.2', 'Hikvision DS-2CD3xx5 V5.5.3', 'Hikvision DS-2CD3xx5 V5.5.52', 'Hikvision DS-2CD2xx6 V5.5.0', 'Hikvision DS-2CD2xx6 V5.5.2', 'Hikvision DS-2CD2xx6 V5.5.3', 'Hikvision DS-2CD2xx6 V5.5.52', 'Hikvision DS-2CD2xx5 V5.5.0', 'Hikvision DS-2CD2xx5 V5.5.2', 'Hikvision DS-2CD2xx5 V5.5.3', 'Hikvision DS-2CD2xx5 V5.5.52', 'Hikvision DS-2CD3x47 V5.5.0', 'Hikvision DS-2CD3x47 V5.5.2', 'Hikvision DS-2CD3x47 V5.5.3', 'Hikvision DS-2CD3x47 V5.5.52', 'Hikvision DS-2CD2x47 V5.5.0', 'Hikvision DS-2CD2x47 V5.5.2', 'Hikvision DS-2CD2x47 V5.5.3', 'Hikvision DS-2CD2x47 V5.5.52', 'Hikvision DS-2XM6614-I V5.5.51', 'Hikvision DS-IPC-T11-I V5.5.51', 'Hikvision DS-IPC-B11-I V5.5.51', 'Hikvision DS-2CD1311-I V5.5.51', 'Hikvision DS-2CD1211-I V5.5.51', 'Hikvision DS-2CD1301-I V5.5.51', 'Hikvision DS-2CD1201-I V5.5.51', 'Hikvision DS-2CD3311(D)-I V5.5.5', 'Hikvision DS-2CD3311(D)-I V5.5.52', 'Hikvision DS-2CD3x10-I V5.5.5', 'Hikvision DS-2CD3x10-I V5.5.52', 'Hikvision DS-2CD3x10F-I V5.5.5', 'Hikvision DS-2CD3x10F-I V5.5.52', 'Hikvision DS-2CD1301F-I V5.5.5', 'Hikvision DS-2CD1301F-I V5.5.52', 'Hikvision DS-2CD1201F-I V5.5.5', 'Hikvision DS-2CD1201F-I V5.5.52', 'Hikvision DS-2CD3x25 V5.5.0', 'Hikvision DS-2CD3x25 V5.5.2', 'Hikvision DS-2CD3x25 V5.5.4', 'Hikvision DS-2CD3x25 V5.5.6', 'Hikvision DS-2CD3x25 V5.5.52', 'Hikvision DS-2CD3x26(B) V5.5.0', 'Hikvision DS-2CD3x26(B) V5.5.2', 'Hikvision DS-2CD3x26(B) V5.5.4', 'Hikvision DS-2CD3x26(B) V5.5.6', 'Hikvision DS-2CD3x26(B) V5.5.52', 'Hikvision DS-2CD3x21(B) V5.5.0', 'Hikvision DS-2CD3x21(B) V5.5.2', 'Hikvision DS-2CD3x21(B) V5.5.4', 'Hikvision DS-2CD3x21(B) V5.5.6', 'Hikvision DS-2CD3x21(B) V5.5.52', 'Hikvision DS-2CD2x21(B) V5.5.0', 'Hikvision DS-2CD2x21(B) V5.5.2', 'Hikvision DS-2CD2x21(B) V5.5.4', 'Hikvision DS-2CD2x21(B) V5.5.6', 'Hikvision DS-2CD2x21(B) V5.5.52', 'Hikvision DS-2CD2x25(D) V5.5.0', 'Hikvision DS-2CD2x25(D) V5.5.2', 'Hikvision DS-2CD2x25(D) V5.5.4', 'Hikvision DS-2CD2x25(D) V5.5.6', 'Hikvision DS-2CD2x25(D) V5.5.52', 'Hikvision DS-2CD2x26 V5.5.0', 'Hikvision DS-2CD2x26 V5.5.2', 'Hikvision DS-2CD2x26 V5.5.4', 'Hikvision DS-2CD2x26 V5.5.6', 'Hikvision DS-2CD2x26 V5.5.52', 'Hikvision DS-2CD1x25 V5.5.0', 'Hikvision DS-2CD1x25 V5.5.2', 'Hikvision DS-2CD1x25 V5.5.4', 'Hikvision DS-2CD1x25 V5.5.6', 'Hikvision DS-2CD1x25 V5.5.52', 'Hikvision DS-IPC-T12H-I V5.5.0', 'Hikvision DS-IPC-T12H-I V5.5.2', 'Hikvision DS-IPC-T12H-I V5.5.4', 'Hikvision DS-IPC-T12H-I V5.5.6', 'Hikvision DS-IPC-T12H-I V5.5.52', 'Hikvision DS-IPC-B12H-I V5.5.0', 'Hikvision DS-IPC-B12H-I V5.5.2', 'Hikvision DS-IPC-B12H-I V5.5.4', 'Hikvision DS-IPC-B12H-I V5.5.6', 'Hikvision DS-IPC-B12H-I V5.5.52', 'Hikvision DS-2CD3220(B) V5.5.4', 'Hikvision DS-2CD3220(B) V5.5.5', 'Hikvision DS-2CD3220(B) V5.5.52', 'Hikvision DS-2CD3x20(F) V5.5.4', 'Hikvision DS-2CD3x20(F) V5.5.5', 'Hikvision DS-2CD3x20(F) V5.5.52', 'Hikvision DS-2CD1x31 V5.5.4', 'Hikvision DS-2CD1x31 V5.5.5', 'Hikvision DS-2CD1x31 V5.5.52', 'Hikvision DS-2CD1221 V5.5.4', 'Hikvision DS-2CD1221 V5.5.5', 'Hikvision DS-2CD1221 V5.5.52', 'Hikvision DS-2CD1321 V5.5.4', 'Hikvision DS-2CD1321 V5.5.5', 'Hikvision DS-2CD1321 V5.5.52', 'Hikvision DS-2XM6624-I V5.5.4', 'Hikvision DS-2XM6624-I V5.5.5', 'Hikvision DS-2XM6624-I V5.5.52', 'Hikvision DS-IPC-T12-I V5.5.4', 'Hikvision DS-IPC-T12-I V5.5.5', 'Hikvision DS-IPC-T12-I V5.5.52', 'Hikvision DS-IPC-B12-I V5.5.4', 'Hikvision DS-IPC-B12-I V5.5.5', 'Hikvision DS-IPC-B12-I V5.5.52']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2018-6414"
    }
  },
  "description": "HikVision IP Cameras\u662f\u4e2d\u56fd\u6d77\u5eb7\u5a01\u89c6\uff08Hikvision\uff09\u516c\u53f8\u7684\u7f51\u7edc\u6444\u50cf\u673a\u4ea7\u54c1\u3002\r\n\r\n\u6d77\u5eb7\u5a01\u89c6\u7f51\u7edc\u6444\u50cf\u673a\u5b58\u5728\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u672a\u80fd\u5145\u5206\u7684\u9a8c\u8bc1\u8f93\u5165\u4fe1\u606f\u3002\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u5411\u53d7\u5f71\u54cd\u7684\u8bbe\u5907\u53d1\u9001\u7279\u5236\u7684\u6d88\u606f\u5229\u7528\u8be5\u6f0f\u6d1e\u635f\u574f\u5185\u5b58\uff0c\u6267\u884c\u4efb\u610f\u4ee3\u7801\u6216\u9020\u6210\u8fdb\u7a0b\u5d29\u6e83\u3002",
  "discovererName": "\u4ee5\u8272\u5217\u7269\u8054\u7f51\u5b89\u5168\u516c\u53f8VDOO\u7684Ori Hollander",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttp://www.hikvision.com/cn/support_det_591_i531.html",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2018-17379",
  "openTime": "2018-09-27",
  "products": {
    "product": [
      "Hikvision DS-2CD3x66 V5.5.0",
      "Hikvision DS-2CD3x66 V5.5.2",
      "Hikvision DS-2CD3x66 V5.5.3",
      "Hikvision DS-2CD3x66 V5.5.51",
      "Hikvision DS-2CD3x66 V5.5.52",
      "Hikvision DS-2CD3x66 V5.5.60",
      "Hikvision DS-2CD3x86 V5.5.0",
      "Hikvision DS-2CD3x86 V5.5.2",
      "Hikvision DS-2CD3x86 V5.5.3",
      "Hikvision DS-2CD3x86 V5.5.51",
      "Hikvision DS-2CD3x86 V5.5.52",
      "Hikvision DS-2CD3x86 V5.5.60",
      "Hikvision DS-2CD2x66 V5.5.0",
      "Hikvision DS-2CD2x66 V5.5.2",
      "Hikvision DS-2CD2x66 V5.5.3",
      "Hikvision DS-2CD2x66 V5.5.51",
      "Hikvision DS-2CD2x66 V5.5.52",
      "Hikvision DS-2CD2x66 V5.5.60",
      "Hikvision DS-2CD2x86 V5.5.0",
      "Hikvision DS-2CD2x86 V5.5.2",
      "Hikvision DS-2CD2x86 V5.5.3",
      "Hikvision DS-2CD2x86 V5.5.51",
      "Hikvision DS-2CD2x86 V5.5.52",
      "Hikvision DS-2CD2x86 V5.5.60",
      "Hikvision DS-2CD3xx6 V5.5.0",
      "Hikvision DS-2CD3xx6 V5.5.2",
      "Hikvision DS-2CD3xx6 V5.5.3",
      "Hikvision DS-2CD3xx6 V5.5.52",
      "Hikvision DS-2CD3xx5 V5.5.0",
      "Hikvision DS-2CD3xx5 V5.5.2",
      "Hikvision DS-2CD3xx5 V5.5.3",
      "Hikvision DS-2CD3xx5 V5.5.52",
      "Hikvision DS-2CD2xx6 V5.5.0",
      "Hikvision DS-2CD2xx6 V5.5.2",
      "Hikvision DS-2CD2xx6 V5.5.3",
      "Hikvision DS-2CD2xx6 V5.5.52",
      "Hikvision DS-2CD2xx5 V5.5.0",
      "Hikvision DS-2CD2xx5 V5.5.2",
      "Hikvision DS-2CD2xx5 V5.5.3",
      "Hikvision DS-2CD2xx5 V5.5.52",
      "Hikvision DS-2CD3x47 V5.5.0",
      "Hikvision DS-2CD3x47 V5.5.2",
      "Hikvision DS-2CD3x47 V5.5.3",
      "Hikvision DS-2CD3x47 V5.5.52",
      "Hikvision DS-2CD2x47 V5.5.0",
      "Hikvision DS-2CD2x47 V5.5.2",
      "Hikvision DS-2CD2x47 V5.5.3",
      "Hikvision DS-2CD2x47 V5.5.52",
      "Hikvision DS-2XM6614-I V5.5.51",
      "Hikvision DS-IPC-T11-I V5.5.51",
      "Hikvision DS-IPC-B11-I V5.5.51",
      "Hikvision DS-2CD1311-I V5.5.51",
      "Hikvision DS-2CD1211-I V5.5.51",
      "Hikvision DS-2CD1301-I V5.5.51",
      "Hikvision DS-2CD1201-I V5.5.51",
      "Hikvision DS-2CD3311(D)-I V5.5.5",
      "Hikvision DS-2CD3311(D)-I V5.5.52",
      "Hikvision DS-2CD3x10-I V5.5.5",
      "Hikvision DS-2CD3x10-I V5.5.52",
      "Hikvision DS-2CD3x10F-I V5.5.5",
      "Hikvision DS-2CD3x10F-I V5.5.52",
      "Hikvision DS-2CD1301F-I V5.5.5",
      "Hikvision DS-2CD1301F-I V5.5.52",
      "Hikvision DS-2CD1201F-I V5.5.5",
      "Hikvision DS-2CD1201F-I V5.5.52",
      "Hikvision DS-2CD3x25 V5.5.0",
      "Hikvision DS-2CD3x25 V5.5.2",
      "Hikvision DS-2CD3x25 V5.5.4",
      "Hikvision DS-2CD3x25 V5.5.6",
      "Hikvision DS-2CD3x25 V5.5.52",
      "Hikvision DS-2CD3x26(B) V5.5.0",
      "Hikvision DS-2CD3x26(B) V5.5.2",
      "Hikvision DS-2CD3x26(B) V5.5.4",
      "Hikvision DS-2CD3x26(B) V5.5.6",
      "Hikvision DS-2CD3x26(B) V5.5.52",
      "Hikvision DS-2CD3x21(B) V5.5.0",
      "Hikvision DS-2CD3x21(B) V5.5.2",
      "Hikvision DS-2CD3x21(B) V5.5.4",
      "Hikvision DS-2CD3x21(B) V5.5.6",
      "Hikvision DS-2CD3x21(B) V5.5.52",
      "Hikvision DS-2CD2x21(B) V5.5.0",
      "Hikvision DS-2CD2x21(B) V5.5.2",
      "Hikvision DS-2CD2x21(B) V5.5.4",
      "Hikvision DS-2CD2x21(B) V5.5.6",
      "Hikvision DS-2CD2x21(B) V5.5.52",
      "Hikvision DS-2CD2x25(D) V5.5.0",
      "Hikvision DS-2CD2x25(D) V5.5.2",
      "Hikvision DS-2CD2x25(D) V5.5.4",
      "Hikvision DS-2CD2x25(D) V5.5.6",
      "Hikvision DS-2CD2x25(D) V5.5.52",
      "Hikvision DS-2CD2x26 V5.5.0",
      "Hikvision DS-2CD2x26 V5.5.2",
      "Hikvision DS-2CD2x26 V5.5.4",
      "Hikvision DS-2CD2x26 V5.5.6",
      "Hikvision DS-2CD2x26 V5.5.52",
      "Hikvision DS-2CD1x25 V5.5.0",
      "Hikvision DS-2CD1x25 V5.5.2",
      "Hikvision DS-2CD1x25 V5.5.4",
      "Hikvision DS-2CD1x25 V5.5.6",
      "Hikvision DS-2CD1x25 V5.5.52",
      "Hikvision DS-IPC-T12H-I V5.5.0",
      "Hikvision DS-IPC-T12H-I V5.5.2",
      "Hikvision DS-IPC-T12H-I V5.5.4",
      "Hikvision DS-IPC-T12H-I V5.5.6",
      "Hikvision DS-IPC-T12H-I V5.5.52",
      "Hikvision DS-IPC-B12H-I V5.5.0",
      "Hikvision DS-IPC-B12H-I V5.5.2",
      "Hikvision DS-IPC-B12H-I V5.5.4",
      "Hikvision DS-IPC-B12H-I V5.5.6",
      "Hikvision DS-IPC-B12H-I V5.5.52",
      "Hikvision DS-2CD3220(B) V5.5.4",
      "Hikvision DS-2CD3220(B) V5.5.5",
      "Hikvision DS-2CD3220(B) V5.5.52",
      "Hikvision DS-2CD3x20(F) V5.5.4",
      "Hikvision DS-2CD3x20(F) V5.5.5",
      "Hikvision DS-2CD3x20(F) V5.5.52",
      "Hikvision DS-2CD1x31 V5.5.4",
      "Hikvision DS-2CD1x31 V5.5.5",
      "Hikvision DS-2CD1x31 V5.5.52",
      "Hikvision DS-2CD1221 V5.5.4",
      "Hikvision DS-2CD1221 V5.5.5",
      "Hikvision DS-2CD1221 V5.5.52",
      "Hikvision DS-2CD1321 V5.5.4",
      "Hikvision DS-2CD1321 V5.5.5",
      "Hikvision DS-2CD1321 V5.5.52",
      "Hikvision DS-2XM6624-I V5.5.4",
      "Hikvision DS-2XM6624-I V5.5.5",
      "Hikvision DS-2XM6624-I V5.5.52",
      "Hikvision DS-IPC-T12-I V5.5.4",
      "Hikvision DS-IPC-T12-I V5.5.5",
      "Hikvision DS-IPC-T12-I V5.5.52",
      "Hikvision DS-IPC-B12-I V5.5.4",
      "Hikvision DS-IPC-B12-I V5.5.5",
      "Hikvision DS-IPC-B12-I V5.5.52"
    ]
  },
  "serverity": "\u9ad8",
  "submitTime": "2018-08-13",
  "title": "\u6d77\u5eb7\u5a01\u89c6\u7f51\u7edc\u6444\u50cf\u673a\u5b58\u5728\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2018-6414 (GCVE-0-2018-6414)

FKIE_CVE-2018-6414

VAR-201808-0810

GHSA-599G-W84X-HFM9

GSD-2018-6414

CNVD-2018-17379

Tags

Sightings

Nomenclature