CVE-2021-36260 - Hikvision Improper Input Validation

CVE-2021-36260: Hikvision | Security cameras web server

Date Added:
2022-01-10

Due Date:
2022-01-24

Vulnerability Name: Hikvision Improper Input Validation

Description: A command injection vulnerability in the web server of some Hikvision product. Due to the insufficient input validation.

Known To Be Used in Ransomware Campaigns?: Unknown

Action: Apply updates per vendor instructions.

Additional Notes: https://nvd.nist.gov/vuln/detail/CVE-2021-36260

Related News Articles: FBI spots HiatusRAT malware attacks targeting web cameras, DVRsDecember 17, 2024

Free security scan for your website

Don't show website scan report rating on the leaderboard