Skip to main content

Ds K1t671 Firmware

3 CVEs product

Monthly

CVE-2025-66176 HIGH This Week

There is a Stack overflow Vulnerability in the device Search and Discovery feature of Hikvision Access Control Products. If exploited, an attacker on the same local area network (LAN) could cause the device to malfunction by sending specially crafted packets to an unpatched device. [CVSS 8.8 HIGH]

Hikvision Stack Overflow Buffer Overflow Ds K5671 Firmware Ds K1t6qt F43 Firmware +26
NVD VulDB
CVSS 3.1
8.8
EPSS
0.0%
CVE-2023-28810 MEDIUM This Month

Some access control/intercom products have unauthorized modification of device network configuration vulnerabilities. Rated medium severity (CVSS 4.3), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Ds K1T804Af Firmware Ds K1T804Amf Firmware Ds K1T341Am Firmware Ds K1T341Amf Firmware +33
NVD
CVSS 3.1
4.3
EPSS
10.4%
CVE-2023-28809 HIGH This Week

Some access control products are vulnerable to a session hijacking attack because the product does not update the session ID after a user successfully logs in. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Authentication Bypass Ds K1T320Efwx Firmware Ds K1T320Efx Firmware Ds K1T320Ewx Firmware Ds K1T320Ex Firmware +22
NVD
CVSS 3.1
7.5
EPSS
0.6%
EPSS 0% CVSS 8.8
HIGH This Week

There is a Stack overflow Vulnerability in the device Search and Discovery feature of Hikvision Access Control Products. If exploited, an attacker on the same local area network (LAN) could cause the device to malfunction by sending specially crafted packets to an unpatched device. [CVSS 8.8 HIGH]

Hikvision Stack Overflow Buffer Overflow +28
NVD VulDB
EPSS 10% CVSS 4.3
MEDIUM This Month

Some access control/intercom products have unauthorized modification of device network configuration vulnerabilities. Rated medium severity (CVSS 4.3), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Ds K1T804Af Firmware Ds K1T804Amf Firmware +35
NVD
EPSS 1% CVSS 7.5
HIGH This Week

Some access control products are vulnerable to a session hijacking attack because the product does not update the session ID after a user successfully logs in. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Authentication Bypass Ds K1T320Efwx Firmware Ds K1T320Efx Firmware +24
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy