VYPR
Unrated severityCISA KEVNVD Advisory· Published Sep 22, 2021· Updated Oct 21, 2025

CVE-2021-36260

CVE-2021-36260

Description

A command injection vulnerability in the web server of some Hikvision product. Due to the insufficient input validation, attacker can exploit the vulnerability to launch a command injection attack by sending some messages with malicious commands.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

1
  • Hikvision/Hikvision productdescription

Patches

Vulnerability mechanics

References

5

News mentions

2