EUVD-2026-28908
GHSA-q7wq-j9rx-47m6
CVSS VectorNVD
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Lifecycle Timeline
2DescriptionNVD
Some Hikvision switch products (discontinued since December 2023) are vulnerable to authenticated remote command execution due to insufficient input validation. Attackers with valid credentials can exploit this flaw by sending crafted packets containing malicious commands to affected devices, leading to arbitrary command execution.
AnalysisAI
Authenticated remote command execution in discontinued Hikvision DS-3E series switches (DS-3E1310P-SI, DS-3E1318P-SI, DS-3E1326P-SI) allows high-privilege users to execute arbitrary operating system commands by sending specially crafted network packets with malicious payloads due to insufficient input validation. The vulnerability carries a CVSS score of 7.2 with network attack vector and low complexity, though exploitation requires high-privilege credentials. …
Sign in for full analysis, threat intelligence, and remediation guidance.
RemediationAI
Within 24 hours: Inventory all DS-3E1310P-SI, DS-3E1318P-SI, and DS-3E1326P-SI switches in production and document their network criticality and data access scope. Within 7 days: Restrict administrative access to affected switches through network segmentation, firewall rules limiting management interfaces to isolated jump hosts, and disable unnecessary remote management protocols (SSH, HTTPS if not required). …
Sign in for detailed remediation steps.
Share
External POC / Exploit Code
Leaving vuln.today