CVE-2021-36260

Warnung

Exploit

EPSS 94.44%
Veröffentlicht 22.09.2021 13:15:07
Zuletzt bearbeitet 10.11.2025 14:44:10
Quelle hsrc@hikvision.com
CVE-Watchlists
Login
Unerledigt
Login

A command injection vulnerability in the web server of some Hikvision product. Due to the insufficient input validation, attacker can exploit the vulnerability to launch a command injection attack by sending some messages with malicious commands.

Betroffene Produkte Warnungen 1 Metriken 4 CWE 1 Referenzen 9

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Hikvision ≫ Ds-2cd2186g2-isu Firmware Version-

Hikvision ≫ Ds-2cd2186g2-isu Version-

Hikvision ≫ Ds-2cd2426g2-i Firmware Version-

Hikvision ≫ Ds-2cd2426g2-i Version-

Hikvision ≫ Ds-2cd2446g2-i Firmware Version-

Hikvision ≫ Ds-2cd2446g2-i Version-

Hikvision ≫ Ds-2cd2526g2-is Firmware Version-

Hikvision ≫ Ds-2cd2526g2-is Version-

Hikvision ≫ Ds-2cd2666g2-izs Firmware Version-

Hikvision ≫ Ds-2cd2666g2-izs Version-

Hikvision ≫ Ds-2cd2686g2-izs Firmware Version-

Hikvision ≫ Ds-2cd2686g2-izs Version-

Hikvision ≫ Ds-2cd2766g2-izs Firmware Version-

Hikvision ≫ Ds-2cd2766g2-izs Version-

Hikvision ≫ Ds-2cd2786g2-izs Firmware Version-

Hikvision ≫ Ds-2cd2786g2-izs Version-

Hikvision ≫ Ds-2cd2527g2-ls Firmware Version-

Hikvision ≫ Ds-2cd2527g2-ls Version-

Hikvision ≫ Ds-2cd2547g2-ls Firmware Version-

Hikvision ≫ Ds-2cd2547g2-ls Version-

Hikvision ≫ Ds-2cd2547g2-lzs Firmware Version-

Hikvision ≫ Ds-2cd2547g2-lzs Version-

Hikvision ≫ Ds-2cd2121g1 Firmware Version-

Hikvision ≫ Ds-2cd2121g1 Version-

Hikvision ≫ Ds-2cd2121g1-idw Firmware Version-

Hikvision ≫ Ds-2cd2121g1-idw Version-

Hikvision ≫ Ds-2cd2123g2-iu Firmware Version-

Hikvision ≫ Ds-2cd2123g2-iu Version-

Hikvision ≫ Ds-2cd2143g2-iu Firmware Version-

Hikvision ≫ Ds-2cd2143g2-iu Version-

Hikvision ≫ Ds-2cd2163g2-iu Firmware Version-

Hikvision ≫ Ds-2cd2163g2-iu Version-

Hikvision ≫ Ds-2cd2183g2-iu Firmware Version-

Hikvision ≫ Ds-2cd2183g2-iu Version-

Hikvision ≫ Ds-2cd2623g2-izs Firmware Version-

Hikvision ≫ Ds-2cd2623g2-izs Version-

Hikvision ≫ Ds-2cd2643g2-izs Firmware Version-

Hikvision ≫ Ds-2cd2643g2-izs Version-

Hikvision ≫ Ds-2cd2663g2-izs Firmware Version-

Hikvision ≫ Ds-2cd2663g2-izs Version-

Hikvision ≫ Ds-2cd2683g2-izs Firmware Version-

Hikvision ≫ Ds-2cd2683g2-izs Version-

Hikvision ≫ Ds-2cd2723g2-izs Firmware Version-

Hikvision ≫ Ds-2cd2723g2-izs Version-

Hikvision ≫ Ds-2cd2743g2-izs Firmware Version-

Hikvision ≫ Ds-2cd2743g2-izs Version-

Hikvision ≫ Ds-2cd2763g2-izs Firmware Version-

Hikvision ≫ Ds-2cd2763g2-izs Version-

Hikvision ≫ Ds-2cd2783g2-izs Firmware Version-

Hikvision ≫ Ds-2cd2783g2-izs Version-

Hikvision ≫ Ds-2cd3023g2-iu Firmware Version-

Hikvision ≫ Ds-2cd3023g2-iu Version-

Hikvision ≫ Ds-2cd3043g2-iu Firmware Version-

Hikvision ≫ Ds-2cd3043g2-iu Version-

Hikvision ≫ Ds-2cd3063g2-iu Firmware Version-

Hikvision ≫ Ds-2cd3063g2-iu Version-

Hikvision ≫ Ds-2cd3323g2-iu Firmware Version-

Hikvision ≫ Ds-2cd3323g2-iu Version-

Hikvision ≫ Ds-2cd3343g2-iu Firmware Version-

Hikvision ≫ Ds-2cd3343g2-iu Version-

Hikvision ≫ Ds-2cd3363g2-iu Firmware Version-

Hikvision ≫ Ds-2cd3363g2-iu Version-

Hikvision ≫ Ds-2cd3523g2-is Firmware Version-

Hikvision ≫ Ds-2cd3523g2-is Version-

Hikvision ≫ Ds-2cd3543g2-is Firmware Version-

Hikvision ≫ Ds-2cd3543g2-is Version-

Hikvision ≫ Ds-2cd3563g2-is Firmware Version-

Hikvision ≫ Ds-2cd3563g2-is Version-

Hikvision ≫ Ds-2cd3623g2-izs Firmware Version-

Hikvision ≫ Ds-2cd3623g2-izs Version-

Hikvision ≫ Ds-2cd3643g2-izs Firmware Version-

Hikvision ≫ Ds-2cd3643g2-izs Version-

Hikvision ≫ Ds-2cd3663g2-izs Firmware Version-

Hikvision ≫ Ds-2cd3663g2-izs Version-

Hikvision ≫ Ds-2cd3723g2-izs Firmware Version-

Hikvision ≫ Ds-2cd3723g2-izs Version-

Hikvision ≫ Ds-2cd3743g2-izs Firmware Version-

Hikvision ≫ Ds-2cd3743g2-izs Version-

Hikvision ≫ Ds-2cd3763g2-izs Firmware Version-

Hikvision ≫ Ds-2cd3763g2-izs Version-

Hikvision ≫ Ds-2cd2121g1-idw Firmware Version-

Hikvision ≫ Ds-2cd2121g1-idw Version-

Hikvision ≫ Ds-2cd2121g1-idw Firmware Version-

Hikvision ≫ Ds-2cd2121g1-idw Version-

Hikvision ≫ Ds-2cd2123g2-iu Firmware Version-

Hikvision ≫ Ds-2cd2123g2-iu Version-

Hikvision ≫ Ds-2cd2143g2-iu Firmware Version-

Hikvision ≫ Ds-2cd2143g2-iu Version-

Hikvision ≫ Ds-2cd2183g2-iu Firmware Version-

Hikvision ≫ Ds-2cd2183g2-iu Version-

Hikvision ≫ Ds-2cd2623g2-izs Firmware Version-

Hikvision ≫ Ds-2cd2623g2-izs Version-

Hikvision ≫ Ds-2cd2643g2-izs Firmware Version-

Hikvision ≫ Ds-2cd2643g2-izs Version-

Hikvision ≫ Ds-2cd2663g2-izs Firmware Version-

Hikvision ≫ Ds-2cd2663g2-izs Version-

Hikvision ≫ Ds-2cd2683g2-izs Firmware Version-

Hikvision ≫ Ds-2cd2683g2-izs Version-

Hikvision ≫ Ds-2cd2723g2-izs Firmware Version-

Hikvision ≫ Ds-2cd2723g2-izs Version-

Hikvision ≫ Ds-2cd2743g2-izs Firmware Version-

Hikvision ≫ Ds-2cd2743g2-izs Version-

Hikvision ≫ Ds-2cd2763g2-izs Firmware Version-

Hikvision ≫ Ds-2cd2763g2-izs Version-

Hikvision ≫ Ds-2cd2783g2-izs Firmware Version-

Hikvision ≫ Ds-2cd2783g2-izs Version-

Hikvision ≫ Ds-2cd3126g2-is Firmware Version-

Hikvision ≫ Ds-2cd3126g2-is Version-

Hikvision ≫ Ds-2cd3156g2-is Firmware Version-

Hikvision ≫ Ds-2cd3156g2-is Version-

Hikvision ≫ Ds-2cd3356g2-is Firmware Version-

Hikvision ≫ Ds-2cd3356g2-is Version-

Hikvision ≫ Ds-2cd3386g2-is Firmware Version-

Hikvision ≫ Ds-2cd3386g2-is Version-

Hikvision ≫ Ds-2cd3526g2-is Firmware Version-

Hikvision ≫ Ds-2cd3526g2-is Version-

Hikvision ≫ Ds-2cd3556g2-is Firmware Version-

Hikvision ≫ Ds-2cd3556g2-is Version-

Hikvision ≫ Ds-2cd3586g2-is Firmware Version-

Hikvision ≫ Ds-2cd3586g2-is Version-

Hikvision ≫ Ds-2cd3626g2-izs Firmware Version-

Hikvision ≫ Ds-2cd3626g2-izs Version-

Hikvision ≫ Ds-2cd3726g2-izs Firmware Version-

Hikvision ≫ Ds-2cd3726g2-izs Version-

Hikvision ≫ Ds-2cd3026g2-is Firmware Version-

Hikvision ≫ Ds-2cd3026g2-is Version-

Hikvision ≫ Ds-2cd3056g2-is Firmware Version-

Hikvision ≫ Ds-2cd3056g2-is Version-

Hikvision ≫ Ds-2cd3086g2-is Firmware Version-

Hikvision ≫ Ds-2cd3086g2-is Version-

Hikvision ≫ Ds-2cd3656g2-izs Firmware Version-

Hikvision ≫ Ds-2cd3656g2-izs Version-

Hikvision ≫ Ds-2cd3686g2-izs Firmware Version-

Hikvision ≫ Ds-2cd3686g2-izs Version-

Hikvision ≫ Ds-2cd3756g2-izs Firmware Version-

Hikvision ≫ Ds-2cd3756g2-izs Version-

Hikvision ≫ Ds-2cd3786g2-izs Firmware Version-

Hikvision ≫ Ds-2cd3786g2-izs Version-

Hikvision ≫ Ds-2cd3047g2-ls Firmware Version-

Hikvision ≫ Ds-2cd3047g2-ls Version-

Hikvision ≫ Ds-2cd3547g2-ls Firmware Version-

Hikvision ≫ Ds-2cd3547g2-ls Version-

Hikvision ≫ Ds-2cd3023g2-iu Firmware Version-

Hikvision ≫ Ds-2cd3023g2-iu Version-

Hikvision ≫ Ds-2cd3043g2-iu Firmware Version-

Hikvision ≫ Ds-2cd3043g2-iu Version-

Hikvision ≫ Ds-2cd3063g2-iu Firmware Version-

Hikvision ≫ Ds-2cd3063g2-iu Version-

Hikvision ≫ Ds-2cd3323g2-iu Firmware Version-

Hikvision ≫ Ds-2cd3323g2-iu Version-

Hikvision ≫ Ds-2cd3343g2-iu Firmware Version-

Hikvision ≫ Ds-2cd3343g2-iu Version-

Hikvision ≫ Ds-2cd3363g2-iu Firmware Version-

Hikvision ≫ Ds-2cd3363g2-iu Version-

Hikvision ≫ Ds-2cd3523g2-is Firmware Version-

Hikvision ≫ Ds-2cd3523g2-is Version-

Hikvision ≫ Ds-2cd3543g2-is Firmware Version-

Hikvision ≫ Ds-2cd3543g2-is Version-

Hikvision ≫ Ds-2cd3563g2-is Firmware Version-

Hikvision ≫ Ds-2cd3563g2-is Version-

Hikvision ≫ Ds-2cd3623g2-izs Firmware Version-

Hikvision ≫ Ds-2cd3623g2-izs Version-

Hikvision ≫ Ds-2cd3643g2-izs Firmware Version-

Hikvision ≫ Ds-2cd3643g2-izs Version-

Hikvision ≫ Ds-2cd3663g2-izs Firmware Version-

Hikvision ≫ Ds-2cd3663g2-izs Version-

Hikvision ≫ Ds-2cd3723g2-izs Firmware Version-

Hikvision ≫ Ds-2cd3723g2-izs Version-

Hikvision ≫ Ds-2cd3743g2-izs Firmware Version-

Hikvision ≫ Ds-2cd3743g2-izs Version-

Hikvision ≫ Ds-2cd3763g2-izs Firmware Version-

Hikvision ≫ Ds-2cd3763g2-izs Version-

Hikvision ≫ Ds-2xe6422fwd-izhrs Firmware Version-

Hikvision ≫ Ds-2xe6422fwd-izhrs Version-

Hikvision ≫ Ds-2xe6482f-izhrs Firmware Version-

Hikvision ≫ Ds-2xe6482f-izhrs Version-

Hikvision ≫ Ds-2dy9236i8x-a Firmware Version-

Hikvision ≫ Ds-2dy9236i8x-a Version-

Hikvision ≫ Ptz-n2204i-de3 Firmware Version-

Hikvision ≫ Ptz-n2204i-de3 Version-

Hikvision ≫ Ptz-n2404i-de3 Firmware Version-

Hikvision ≫ Ptz-n2404i-de3 Version-

Hikvision ≫ Ptz-n4215-de3 Firmware Version-

Hikvision ≫ Ptz-n4215-de3 Version-

Hikvision ≫ Ptz-n4215i-de Firmware Version-

Hikvision ≫ Ptz-n4215i-de Version-

Hikvision ≫ Ptz-n4225i-de Firmware Version-

Hikvision ≫ Ptz-n4225i-de Version-

Hikvision ≫ Ptz-n5225i-a Firmware Version-

Hikvision ≫ Ptz-n5225i-a Version-

Hikvision ≫ Ds-2df6a825x-ael Firmware Version-

Hikvision ≫ Ds-2df6a825x-ael Version-

Hikvision ≫ Ds-2df8225ih-ael Firmware Version-

Hikvision ≫ Ds-2df8225ih-ael Version-

Hikvision ≫ Ds-2df8236i5x-aelw Firmware Version-

Hikvision ≫ Ds-2df8236i5x-aelw Version-

Hikvision ≫ Ids-2sk718mxs-d Firmware Version-

Hikvision ≫ Ids-2sk718mxs-d Version-

Hikvision ≫ Ids-2vs435-f840-ey Firmware Version-

Hikvision ≫ Ids-2vs435-f840-ey Version-

Hikvision ≫ Ds-2td4136t-9 Firmware Version-

Hikvision ≫ Ds-2td4136t-9 Version-

Hikvision ≫ Ds-2td4166t-9 Firmware Version-

Hikvision ≫ Ds-2td4166t-9 Version-

Hikvision ≫ Ds-2td6236t-50h2l Firmware Version-

Hikvision ≫ Ds-2td6236t-50h2l Version-

Hikvision ≫ Ds-2td6266t-25h2l Firmware Version-

Hikvision ≫ Ds-2td6266t-25h2l Version-

Hikvision ≫ Ds-2td6266t-50h2l Firmware Version-

Hikvision ≫ Ds-2td6266t-50h2l Version-

Hikvision ≫ Ds-7604ni-k1 Firmware Version-

Hikvision ≫ Ds-7604ni-k1 Version-

Hikvision ≫ Ds-7608ni-k1 Firmware Version-

Hikvision ≫ Ds-7608ni-k1 Version-

Hikvision ≫ Ds-7616ni-k1 Firmware Version >= 4.30.210 <= 4.31.000

Hikvision ≫ Ds-7616ni-k1 Version-

Hikvision ≫ Ds-7604ni-q1 Firmware Version >= 4.30.210 <= 4.31.000

Hikvision ≫ Ds-7604ni-q1 Version-

Hikvision ≫ Ds-7608ni-q1 Firmware Version >= 4.30.210 <= 4.31.000

Hikvision ≫ Ds-7608ni-q1 Version-

Hikvision ≫ Ds-7608ni-q2 Firmware Version >= 4.30.210 <= 4.31.000

Hikvision ≫ Ds-7608ni-q2 Version-

Hikvision ≫ Ds-7616ni-q1 Firmware Version >= 4.30.210 <= 4.31.000

Hikvision ≫ Ds-7616ni-q1 Version-

Hikvision ≫ Ds-7616ni-q2 Firmware Version >= 4.30.210 <= 4.31.000

Hikvision ≫ Ds-7616ni-q2 Version-

Hikvision ≫ Ds-7104ni-q1 Firmware Version >= 4.30.300 <= 4.31.100

Hikvision ≫ Ds-7104ni-q1 Version-

Hikvision ≫ Ds-7108ni-q1 Firmware Version >= 4.30.300 <= 4.31.100

Hikvision ≫ Ds-7108ni-q1 Version-

10.01.2022: CISA Known Exploited Vulnerabilities (KEV) Catalog

Hikvision Improper Input Validation

Schwachstelle

A command injection vulnerability in the web server of some Hikvision product. Due to the insufficient input validation.

Beschreibung

Apply updates per vendor instructions.

Erforderliche Maßnahmen

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	94.44%	1

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	9.3	8.6	10	AV:N/AC:M/Au:N/C:C/I:C/A:C
134c704f-9b21-4f2e-91b3-4a467353bcc0	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

http://packetstormsecurity.com/files/164603/Hikvision-Web-Server-Build-210702-Command-Injection.html

Third Party Advisory

Exploit

VDB Entry

http://packetstormsecurity.com/files/166167/Hikvision-IP-Camera-Unauthenticated-Command-Injection.html

Third Party Advisory

Exploit

VDB Entry

https://therecord.media/experts-warn-of-widespread-exploitation-involving-hikvision-cameras/

Third Party Advisory

https://www.cyfirma.com/wp-content/uploads/2022/08/HikvisionSurveillanceCamerasVulnerabilities.pdf

Third Party Advisory