4.3

CVE-2023-28810

EPSS 0.41%
Veröffentlicht 15.06.2023 22:15:09
Zuletzt bearbeitet 21.11.2024 07:56:03
Quelle hsrc@hikvision.com
CVE-Watchlists
Login
Unerledigt
Login

Some access control/intercom products have unauthorized modification of device network configuration vulnerabilities. Attackers can modify device network configuration by sending specific data packets to the vulnerable interface within the same local network.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Hikvision ≫ Ds-k1t804af Firmware Version <= 1.4.0_build221212

Hikvision ≫ Ds-k1t804af Version-

Hikvision ≫ Ds-k1t804amf Firmware Version <= 1.4.0_build221212

Hikvision ≫ Ds-k1t804amf Version-

Hikvision ≫ Ds-k1t341am Firmware Version <= 3.2.30_build221223

Hikvision ≫ Ds-k1t341am Version-

Hikvision ≫ Ds-k1t341amf Firmware Version <= 3.2.30_build221223

Hikvision ≫ Ds-k1t341amf Version-

Hikvision ≫ Ds-k1t671m Firmware Version <= 3.2.30_build221223

Hikvision ≫ Ds-k1t671m Version-

Hikvision ≫ Ds-k1t671mf Firmware Version <= 3.2.30_build221223

Hikvision ≫ Ds-k1t671mf Version-

Hikvision ≫ Ds-k1t671 Firmware Version <= 3.2.30_build221223

Hikvision ≫ Ds-k1t671 Version-

Hikvision ≫ Ds-k1t343efwx Firmware Version <= 3.14.0_build230117

Hikvision ≫ Ds-k1t343efwx Version-

Hikvision ≫ Ds-k1t343efx Firmware Version <= 3.14.0_build230117

Hikvision ≫ Ds-k1t343efx Version-

Hikvision ≫ Ds-k1t343ewx Firmware Version <= 3.14.0_build230117

Hikvision ≫ Ds-k1t343ewx Version-

Hikvision ≫ Ds-k1t343ex Firmware Version <= 3.14.0_build230117

Hikvision ≫ Ds-k1t343ex Version-

Hikvision ≫ Ds-k1t343mfwx Firmware Version <= 3.14.0_build230117

Hikvision ≫ Ds-k1t343mfwx Version-

Hikvision ≫ Ds-k1t343mfx Firmware Version <= 3.14.0_build230117

Hikvision ≫ Ds-k1t343mfx Version-

Hikvision ≫ Ds-k1t343mwx Firmware Version <= 3.14.0_build230117

Hikvision ≫ Ds-k1t343mwx Version-

Hikvision ≫ Ds-k1t343mx Firmware Version <= 3.14.0_build230117

Hikvision ≫ Ds-k1t343mx Version-

Hikvision ≫ Ds-k1t341c Firmware Version <= 3.3.8_build230112

Hikvision ≫ Ds-k1t341c Version-

Hikvision ≫ Ds-k1t320efwx Firmware Version <= 3.5.0_build220706

Hikvision ≫ Ds-k1t320efwx Version-

Hikvision ≫ Ds-k1t320efx Firmware Version <= 3.5.0_build220706

Hikvision ≫ Ds-k1t320efx Version-

Hikvision ≫ Ds-k1t320ewx Firmware Version <= 3.5.0_build220706

Hikvision ≫ Ds-k1t320ewx Version-

Hikvision ≫ Ds-k1t320ex Firmware Version <= 3.5.0_build220706

Hikvision ≫ Ds-k1t320ex Version-

Hikvision ≫ Ds-k1t320mfwx Firmware Version <= 3.5.0_build220706

Hikvision ≫ Ds-k1t320mfwx Version-

Hikvision ≫ Ds-k1t320mfx Firmware Version <= 3.5.0_build220706

Hikvision ≫ Ds-k1t320mfx Version-

Hikvision ≫ Ds-k1t320mwx Firmware Version <= 3.5.0_build220706

Hikvision ≫ Ds-k1t320mwx Version-

Hikvision ≫ Ds-k1t320mx Firmware Version <= 3.5.0_build220706

Hikvision ≫ Ds-k1t320mx Version-

Hikvision ≫ Ds-kh6320-wte1 Firmware Version <= 2.2.8_build230219

Hikvision ≫ Ds-kh6320-wte1 Version-

Hikvision ≫ Ds-kh6350-wte1 Firmware Version <= 2.2.8_build230219

Hikvision ≫ Ds-kh6350-wte1 Version-

Hikvision ≫ Ds-kh6351-te1 Firmware Version <= 2.2.8_build230219

Hikvision ≫ Ds-kh6351-te1 Version-

Hikvision ≫ Ds-kh6351-wte1 Firmware Version <= 2.2.8_build230219

Hikvision ≫ Ds-kh6351-wte1 Version-

Hikvision ≫ Ds-kh6320-le1 Firmware Version <= 2.2.8_build230219

Hikvision ≫ Ds-kh6320-le1 Version-

Hikvision ≫ Ds-kh63le1(b) Firmware Version <= 2.2.8_build230219

Hikvision ≫ Ds-kh63le1(b) Version-

Hikvision ≫ Ds-kh6320-tde1 Firmware Version <= 2.2.8_build230219

Hikvision ≫ Ds-kh6320-tde1 Version-

Hikvision ≫ Ds-kh6320-te1 Firmware Version <= 2.2.8_build230219

Hikvision ≫ Ds-kh6320-te1 Version-

Hikvision ≫ Ds-kh6320-wtde1 Firmware Version <= 2.2.8_build230219

Hikvision ≫ Ds-kh6320-wtde1 Version-

Hikvision ≫ Ds-kh8520-wte1 Firmware Version <= 2.2.8_build230219

Hikvision ≫ Ds-kh8520-wte1 Version-

Hikvision ≫ Ds-kh6220-le1 Firmware Version <= 1.4.62_build220414

Hikvision ≫ Ds-kh6220-le1 Version-

Hikvision ≫ Ds-kh9310-wte1(b) Firmware Version <= 2.1.76_build230204

Hikvision ≫ Ds-kh9310-wte1(b) Version-

Hikvision ≫ Ds-kh9510-wte1(b) Firmware Version <= 2.1.76_build230204

Hikvision ≫ Ds-kh9510-wte1(b) Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.41%	0.603

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	4.3	2.8	1.4	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
hsrc@hikvision.com	4.3	2.8	1.4	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

CWE-284 Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

https://www.hikvision.com/en/support/cybersecurity/security-advisory/security-vulnerability-in-some-hikvision-access-control-intercom/

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2023-28810

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-28810

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-28810

EUVD