CVE-2023-28811

EUVD-2023-32446
There is a buffer overflow in the password recovery feature of Hikvision NVR/DVR models. If exploited, an attacker on the same local area network (LAN) could cause the device to malfunction by sending specially crafted packets to an unpatched device.
Classic Buffer Overflow
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.4 HIGH
ADJACENT_NETWORK
LOW
NONE
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
hikvisionCNA
7.4 HIGH
ADJACENT_NETWORK
LOW
NONE
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 16%
Affected Products (NVD)
VendorProductVersion
hikvisionnvr-216mh-c\(d\)_firmware
𝑥
< 4.1.60
hikvisionnvr-216mh-c\/16p\(d\)_firmware
𝑥
< 4.1.60
hikvisionnvr-208mh-c\/8p\(d\)_firmware
𝑥
< 4.1.60
hikvisionnvr-104mh-c\/4p\(d\)_firmware
𝑥
< 4.1.60
hikvisionnvr-104mh-c\(d\)_firmware
𝑥
< 4.1.60
hikvisionnvr-108mh-c\(d\)_firmware
𝑥
< 4.1.60
hikvisionnvr-116mh-c\(d\)_firmware
𝑥
< 4.1.60
hikvisionds-7104ni-q1\(c\)_firmware
𝑥
< 4.1.60
hikvisionds-7104ni-q1\(d\)_firmware
𝑥
< 4.1.60
hikvisionds-7108ni-q1\(c\)_firmware
𝑥
< 4.1.60
hikvisionds-7108ni-q1\(d\)_firmware
𝑥
< 4.1.60
hikvisionnvr-104mh-d\(c\)_firmware
𝑥
< 4.1.60
hikvisionnvr-104mh-d\(d\)_firmware
𝑥
< 4.1.60
hikvisionnvr-108h-d\(c\)_firmware
𝑥
< 4.1.60
hikvisionnvr-108mh-d\(c\)_firmware
𝑥
< 4.1.60
hikvisionnvr-108mh-d\(d\)_firmware
𝑥
< 4.1.60
hikvisionnvr-104mh-d\/4p\(c\)_firmware
𝑥
< 4.1.60
hikvisionnvr-108h-d\/8p\(c\)_firmware
𝑥
< 4.1.60
hikvisionnvr-108h-d\/8p\(d\)_firmware
𝑥
< 4.1.60
hikvisionnvr-108mh-d\/8p\(c\)_firmware
𝑥
< 4.1.60
hikvisionds-7604ni-q1\(c\)_firmware
𝑥
< 4.1.60
hikvisionds-7604ni-q1\/4p\(c\)_firmware
𝑥
< 4.1.60
hikvisionds-7608ni-q1\(c\)_firmware
𝑥
< 4.1.60
hikvisionds-7608ni-q1\/8p\(c\)_firmware
𝑥
< 4.1.60
hikvisionds-7608ni-q2\(c\)_firmware
𝑥
< 4.1.60
hikvisionds-7608ni-q2\/8p\(c\)_firmware
𝑥
< 4.1.60
hikvisionds-7616ni-q1\(c\)_firmware
𝑥
< 4.1.60
hikvisionds-7616ni-q2\/16p\(c\)_firmware
𝑥
< 4.1.60
hikvisionds-7616ni-q2\(c\)_firmware
𝑥
< 4.1.60
hikvisionds-7604ni-k1\(c\)_firmware
𝑥
< 4.1.60
hikvisionds-7604ni-k1\/4p\/4g\(c\)_firmware
𝑥
< 4.1.60
hikvisionds-7608ni-k1\/8p\(c\)_firmware
𝑥
< 4.1.60
hikvisionds-7608ni-k1\/8p\/4g\(c\)_firmware
𝑥
< 4.1.60
hikvisionds-7616ni-k1\(c\)_firmware
𝑥
< 4.1.60
hikvisionnvr-208mh-c\(c\)_firmware
𝑥
< 4.1.60
hikvisionnvr-104mh-c\(c\)_firmware
𝑥
< 4.1.60
hikvisionnvr-108mh-c\(c\)_firmware
𝑥
< 4.1.60
hikvisionnvr-108mh-c\/8p\(c\)_firmware
𝑥
< 4.1.60
hikvisionnvr-116mh-c\(c\)_firmware
𝑥
< 4.1.60
hikvisiondvr_firmware
𝑥
< 4.1.60
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://www.hikvision.com/en/support/cybersecurity/security-advisory/buffer-overflow-vulnerability-in-hikvision-nvr-dvr-devices/
https://www.hikvision.com/en/support/cybersecurity/security-advisory/buffer-overflow-vulnerability-in-hikvision-nvr-dvr-devices/