High severity7.2NVD Advisory· Published May 9, 2026· Updated May 12, 2026
CVE-2026-3828
CVE-2026-3828
Description
Some Hikvision switch products (discontinued since December 2023) are vulnerable to authenticated remote command execution due to insufficient input validation. Attackers with valid credentials can exploit this flaw by sending crafted packets containing malicious commands to affected devices, leading to arbitrary command execution.
Affected products
1Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.