Описание
An issue in Hikvision DS-2CD1321-I V5.7.21 build 230819 allows attackers to cause a Denial of Service (DoS) via sending a crafted POST request to the endpoint /ISAPI/Security/challenge.
An issue in Hikvision DS-2CD1321-I V5.7.21 build 230819 allows attackers to cause a Denial of Service (DoS) via sending a crafted POST request to the endpoint /ISAPI/Security/challenge.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2025-45851
- https://assets.hikvision.com/prd/public/all/files/202506/releasenote%5CNetwork_Camera-V5.7.23_SP2_Release_Note-E8.pdf
- https://crashpark.weebly.com/blog/hikvision-ip-camera-unauthenticated-denial-of-service-dos
- https://www.hikvision.com/en/support/download/firmware
Связанные уязвимости
An issue in Hikvision DS-2CD1321-I V5.7.21 build 230819 allows attackers to cause a Denial of Service (DoS) via sending a crafted POST request to the endpoint /ISAPI/Security/challenge. The vendor has stated that upgrading to V5.7.23_SP2 fixes the issue.
Уязвимость микропрограммного обеспечения IP-камер Hikvision, связанная с выходом операции за границы буфера в памяти при обработке параметра PrivateKey, позволяющая нарушителю вызвать отказ в обслуживании