VYPR
Unrated severityNVD Advisory· Published Nov 23, 2023· Updated Aug 2, 2024

CVE-2023-28811

CVE-2023-28811

Description

There is a buffer overflow in the password recovery feature of Hikvision NVR/DVR models. If exploited, an attacker on the same local area network (LAN) could cause the device to malfunction by sending specially crafted packets to an unpatched device.

Affected products

60
  • Hikvision/DS-71XXHGH-K(S)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/DS-71XXHGH-M(C)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/DS-71xxNI-Q1(C)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/DS-71xxNI-Q1(D)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/DS-72XXHGH-K(S)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/DS-72XXHGH-M(C)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/DS-76xxNI-K1(C)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/DS-76xxNI-Q1(C)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/DS-76xxNI-Q2(C)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/DS-77xxNI-I4(B)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/DS-EXXHGHv5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/DVR-EXXHGHv5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/DVR-EXXHQHv5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/DVR-EXXHUHv5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/HL-DVR-1XXG-K(S)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/HL-DVR-1XXG-M(C)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/HL-DVR-216Q-K2(E)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/HL-DVR-2XXG-K(S)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/HL-DVR-2XXG-M(C)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/HL-DVR-2XXQ-M(C)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/HL-DVR-2XXQ-M(E)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/HL-DVR-2XXU-M(C)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/HL-DVR-2XXU-M(E)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/HL-NVR-1xxMH-C(C)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/HL-NVR-1xxMH-D(C)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/HL-NVR-1xxMH-D(D)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/HL-NVR-2xxMH-C(C)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/HW-HWD-51XXH-Gv5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/HW-HWD-51XXH(S)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/HW-HWD-51XXMH-Gv5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/HW-HWD-61XXMH-G4v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/HW-HWD-61XXMH-G4(E)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/HW-HWD-62XXMH-G4v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/HW-HWD-71XXMH-G4v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/HW-HWD-71XXMH-G4(E)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/HW-HWD-72XXMH-G4v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/HW-HWN-21xxMH(C)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/HW-HWN-21xxMH(D)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/HW-HWN-41xxMH(C)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/HW-HWN-41xxMH(D)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/HW-HWN-42xxMH(C)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/HW-HWN-42xxMH(D)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/iDS-71xxHQH-M(C)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/iDS-71xxHQH-M(E)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/iDS-71xxHUH-M(C)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/iDS-71xxHUH-M(E)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/iDS-72XXHQH-M(C)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/iDS-72XXHQH-M(E)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/iDS-72xxHQH-M/E(C)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/iDS-72xxHQH-M/E(E)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/iDS-72XXHTH-M(C)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/iDS-72XXHUH-M(C)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/iDS-72XXHUH-M(E)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/iDS-72xxHUH-M/E(C)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/iDS-72xxHUH-M/E(E)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/iDS-EXXHQHv5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/iDS-EXXHUHv5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/NVR-1xxMH-C(D)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)
  • Hikvision/NVR-2xxMH-C(D)v5
    Range: Build date before 230821(Version before V4.1.60 are not affected)

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.