Vulnerability-Lookup

BDU:2026-01038

Vulnerability from fstec - Published: 12.01.2026

Title

Description

Уязвимость функции Search и Discovery микропрограммного обеспечения устройств видеонаблюдения Hikvision Network Video Recorder (NVR), Digital Video Recorder (DVR), Centralized Video Recorder (CVR) и IP Camera (IPC) связана с переполнением буфера в стеке. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, вызвать отказ в обслуживании путем отправки специально созданные пакеты на устройство

Severity ?


                    
                      AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Vendor

Hikvision

Software Name

DS-96xxxNI-Hx, DS-96xxxNI-Ix, DS-96xxNXI-Sx, DS-96xxxNXI-Sx, DS-76xxNXI-Mx/VPro, DS-96xxNXI-Mx/VPro, DS-96xxxNXI-Mx/VPro, DS-76xxNI-Mx, DS-77xxNI-Mx, DS-96xxNXI-Mx, DS-96xxxNXI-Mx, DS-86xxxNXI-Mx, DS-76xxNXI-Ix/S, DS-77xxNXI-Ix/S, DS-86xxNXI-Ix/S, DS-96xxNXI-Ix/S, DS-76xxNXI-Kx(/xP), DS-77xxNXI-Kx(/xP), DS-76xxNXI-Kx(/xP)/Vpro, DS-77xxNXI-Kx(/xP)/Vpro, DS-76xxNI-Qx(/xP), DS-71xxNI-Q1(/xP)/M, DS-71xxNI-Q1(/xP), DS-710xNI-G1/(xP)/M, DS-76xxNI-Q1(/xP), DS-76xxNI-Q2(/xP), DS-76xxNXI-K1(/xP), DS-76xxNXI-K2(/xP), DS-77xxNXI-K4(/xP), DS-86xxNXI-K8(/xP), DS-76xxNXI-K1(/xP)/VPro, DS-76xxNXI-K2(/xP)/VPro, DS-77xxNXI-K4(/xP)/VPro, iDS-71xxHGHI-M1(/T), iDS-72xxHGHI-M1(/T), iDS-71xxHQHI-M1(/T), iDS-72xxHQHI-M1(/T), iDS-72xxHQHI-Mx/XT, iDS-72xxHUHI-Mx/XT, iDS-72xxHTHI-Mx/XT, iDS-90xxHUHI-M8/S(S), iDS-73xxHUHI-M4/S(S), iDS-81xxHUHI-M8/S(S), DS-71xxHGHI-M1(/T), DS-72xxHGHI-M1(/T), DS-ExxHGHI-xx, iDS-71xxHQHI-M1/S, iDS-72xxHQHI-M1/E, iDS-71xxHQHI-M1/T, iDS-72xxHQHI-M1/T, iDS-73xxHQHI-M4/S, iDS-81xxHQHI-M8/S, iDS-90xxHQHI-M8/S, iDS-ExxHQHI-xx, iDS-71xxHUHI-M1/S, iDS-72xxHUHI-M1/E, iDS-72xxHUHI-M1/T, iDS-72xxHUHI-Mx/X, iDS-72xxHUHI-Mx/PXT, iDS-73xxHUHI-M4/S, iDS-90xxHUHI-M8/S, iDS-ExxHUHI-xx, DS-A806xxSI, DS-AT1000SI, iDS-96xxxNXI-Hx, iDS-96064NXI-I16, iDS-96xxxNXI-Ix/AI, iDS-67xxNXI-Mx/X, iDS-76xxNXI-Mx/X, iDS-77xxNXI-Mx/X, iDS-96xxNXI-Mx/X, iDS-96xxxNXI-Mx/X, iDS-96xxxNXI-Hx/AI, iDS-96xxNXI-Mx/AI, iDS-67xxNXI-Mx/AI, iDS-67xxxNXI-Mx/AI, iDS-67xxNXI-S/T, iDS-67xxNXI-S, iDS-6704NXI/AI, iDS-67xxNXI-P1, iDS-7608NXI-P2, iDS-77xxNXI-P4, iDS-96xxNXI-Px, DS-2CD1xxxG2, DS-2CD3xx1G2, HWI-xxxxHA, IPC-xxxxHA, DS-2CD2Dx5G1, DS-2CD64x5G1, DS-2CD29xxG0, DS-2XE6xxxG0, DS-2XC6xxxG0, DS-2CD1xxxG0(T), DS-2CD1xx1, DS-2CD3xx1G0, DS-2CD2xx1G0, IPC-xxxxH, HWI-xxxH(C)

Software Version

до 250807 (DS-96xxxNI-Hx), до 250807 (DS-96xxxNI-Ix), до 250807 (DS-96xxNXI-Sx), до 250807 (DS-96xxxNXI-Sx), до 250807 (DS-76xxNXI-Mx/VPro), до 250807 (DS-96xxNXI-Mx/VPro), до 250807 (DS-96xxxNXI-Mx/VPro), до 250807 (DS-76xxNI-Mx), до 250807 (DS-77xxNI-Mx), до 250807 (DS-96xxNXI-Mx), до 250807 (DS-96xxxNXI-Mx), до 250807 (DS-86xxxNXI-Mx), до 250807 (DS-76xxNXI-Ix/S), до 250807 (DS-77xxNXI-Ix/S), до 250807 (DS-86xxNXI-Ix/S), до 250807 (DS-96xxNXI-Ix/S), до 250807 (DS-76xxNXI-Kx(/xP)), до 250807 (DS-77xxNXI-Kx(/xP)), до 250807 (DS-76xxNXI-Kx(/xP)/Vpro), до 250807 (DS-77xxNXI-Kx(/xP)/Vpro), до 250807 (DS-76xxNI-Qx(/xP)), до 250807 (DS-71xxNI-Q1(/xP)/M), до 250807 (DS-71xxNI-Q1(/xP)), до 250807 (DS-710xNI-G1/(xP)/M), до 250807 (DS-76xxNI-Q1(/xP)), до 250807 (DS-76xxNI-Q2(/xP)), до 250807 (DS-76xxNXI-K1(/xP)), до 250807 (DS-76xxNXI-K2(/xP)), до 250807 (DS-77xxNXI-K4(/xP)), до 250807 (DS-86xxNXI-K8(/xP)), до 250807 (DS-76xxNXI-K1(/xP)/VPro), до 250807 (DS-76xxNXI-K2(/xP)/VPro), до 250807 (DS-77xxNXI-K4(/xP)/VPro), до 250807 (iDS-71xxHGHI-M1(/T)), до 250807 (iDS-72xxHGHI-M1(/T)), до 250807 (iDS-71xxHQHI-M1(/T)), до 250807 (iDS-72xxHQHI-M1(/T)), до 250807 (iDS-72xxHQHI-Mx/XT), до 250807 (iDS-72xxHUHI-Mx/XT), до 250807 (iDS-72xxHTHI-Mx/XT), до 250807 (iDS-90xxHUHI-M8/S(S)), до 250807 (iDS-73xxHUHI-M4/S(S)), до 250807 (iDS-81xxHUHI-M8/S(S)), до 250807 (DS-71xxHGHI-M1(/T)), до 250807 (DS-72xxHGHI-M1(/T)), до 250807 (DS-ExxHGHI-xx), до 250807 (iDS-71xxHQHI-M1/S), до 250807 (iDS-72xxHQHI-M1/E), до 250807 (iDS-71xxHQHI-M1/T), до 250807 (iDS-72xxHQHI-M1/T), до 250807 (iDS-73xxHQHI-M4/S), до 250807 (iDS-81xxHQHI-M8/S), до 250807 (iDS-90xxHQHI-M8/S), до 250807 (iDS-ExxHQHI-xx), до 250807 (iDS-71xxHUHI-M1/S), до 250807 (iDS-72xxHUHI-M1/E), до 250807 (iDS-72xxHUHI-M1/T), до 250807 (iDS-72xxHUHI-Mx/X), до 250807 (iDS-72xxHUHI-Mx/PXT), до 250807 (iDS-73xxHUHI-M4/S), до 250807 (iDS-90xxHUHI-M8/S), до 250807 (iDS-ExxHUHI-xx), до 250807 (DS-A806xxSI), до 250807 (DS-AT1000SI), до 250807 (iDS-96xxxNXI-Hx), до 250807 (iDS-96064NXI-I16), до 250807 (iDS-96xxxNXI-Ix/AI), до 250807 (iDS-67xxNXI-Mx/X), до 250807 (iDS-76xxNXI-Mx/X), до 250807 (iDS-77xxNXI-Mx/X), до 250807 (iDS-96xxNXI-Mx/X), до 250807 (iDS-96xxxNXI-Mx/X), до 250807 (iDS-96xxxNXI-Hx/AI), до 250807 (iDS-96xxNXI-Mx/AI), до 250807 (iDS-67xxNXI-Mx/AI), до 250807 (iDS-67xxxNXI-Mx/AI), до 250807 (iDS-67xxNXI-S/T), до 250807 (iDS-67xxNXI-S), до 250807 (iDS-6704NXI/AI), до 250807 (iDS-67xxNXI-P1), до 250807 (iDS-7608NXI-P2), до 250807 (iDS-77xxNXI-P4), до 250807 (iDS-96xxNXI-Px), до 5.7.13_230822 включительно (DS-2CD1xxxG2), до 5.7.13_230822 включительно (DS-2CD3xx1G2), до 5.7.13_230822 включительно (HWI-xxxxHA), до 5.7.13_230822 включительно (IPC-xxxxHA), до 5.7.210_240826 включительно (DS-2CD2Dx5G1), до 5.7.210_240826 включительно (DS-2CD64x5G1), до 5.7.21_240814 включительно (DS-2CD29xxG0), до 5.7.21_240814 включительно (DS-2XE6xxxG0), до 5.7.21_240814 включительно (DS-2XC6xxxG0), до 5.7.23_241015 включительно (DS-2CD1xxxG0(T)), до 5.7.23_241015 включительно (DS-2CD1xx1), до 5.7.23_241015 включительно (DS-2CD3xx1G0), до 5.7.23_241015 включительно (DS-2CD2xx1G0), до 5.7.23_241015 включительно (IPC-xxxxH), до 5.7.23_241015 включительно (HWI-xxxH(C))

Possible Mitigations

Использование рекомендаций: https://www.hikvision.com/en/support/cybersecurity/security-advisory/buffer-overflow-vulnerabilities-in-some-hikvision-products/

Reference

https://www.hikvision.com/en/support/cybersecurity/security-advisory/buffer-overflow-vulnerabilities-in-some-hikvision-products/

CWE

CWE-121

JSON

To clipboard

{
  "CVSS 2.0": "AV:A/AC:L/Au:N/C:C/I:C/A:C",
  "CVSS 3.0": "AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
  "CVSS 4.0": null,
  "remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
  "remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
  "\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Hikvision",
  "\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "\u0434\u043e 250807 (DS-96xxxNI-Hx), \u0434\u043e 250807 (DS-96xxxNI-Ix), \u0434\u043e 250807 (DS-96xxNXI-Sx), \u0434\u043e 250807 (DS-96xxxNXI-Sx), \u0434\u043e 250807 (DS-76xxNXI-Mx/VPro), \u0434\u043e 250807 (DS-96xxNXI-Mx/VPro), \u0434\u043e 250807 (DS-96xxxNXI-Mx/VPro), \u0434\u043e 250807 (DS-76xxNI-Mx), \u0434\u043e 250807 (DS-77xxNI-Mx), \u0434\u043e 250807 (DS-96xxNXI-Mx), \u0434\u043e 250807 (DS-96xxxNXI-Mx), \u0434\u043e 250807 (DS-86xxxNXI-Mx), \u0434\u043e 250807 (DS-76xxNXI-Ix/S), \u0434\u043e 250807 (DS-77xxNXI-Ix/S), \u0434\u043e 250807 (DS-86xxNXI-Ix/S), \u0434\u043e 250807 (DS-96xxNXI-Ix/S), \u0434\u043e 250807 (DS-76xxNXI-Kx(/xP)), \u0434\u043e 250807 (DS-77xxNXI-Kx(/xP)), \u0434\u043e 250807 (DS-76xxNXI-Kx(/xP)/Vpro), \u0434\u043e 250807 (DS-77xxNXI-Kx(/xP)/Vpro), \u0434\u043e 250807 (DS-76xxNI-Qx(/xP)), \u0434\u043e 250807 (DS-71xxNI-Q1(/xP)/M), \u0434\u043e 250807 (DS-71xxNI-Q1(/xP)), \u0434\u043e 250807 (DS-710xNI-G1/(xP)/M), \u0434\u043e 250807 (DS-76xxNI-Q1(/xP)), \u0434\u043e 250807 (DS-76xxNI-Q2(/xP)), \u0434\u043e 250807 (DS-76xxNXI-K1(/xP)), \u0434\u043e 250807 (DS-76xxNXI-K2(/xP)), \u0434\u043e 250807 (DS-77xxNXI-K4(/xP)), \u0434\u043e 250807 (DS-86xxNXI-K8(/xP)), \u0434\u043e 250807 (DS-76xxNXI-K1(/xP)/VPro), \u0434\u043e 250807 (DS-76xxNXI-K2(/xP)/VPro), \u0434\u043e 250807 (DS-77xxNXI-K4(/xP)/VPro), \u0434\u043e 250807 (iDS-71xxHGHI-M1(/T)), \u0434\u043e 250807 (iDS-72xxHGHI-M1(/T)), \u0434\u043e 250807 (iDS-71xxHQHI-M1(/T)), \u0434\u043e 250807 (iDS-72xxHQHI-M1(/T)), \u0434\u043e 250807 (iDS-72xxHQHI-Mx/XT), \u0434\u043e 250807 (iDS-72xxHUHI-Mx/XT), \u0434\u043e 250807 (iDS-72xxHTHI-Mx/XT), \u0434\u043e 250807 (iDS-90xxHUHI-M8/S(S)), \u0434\u043e 250807 (iDS-73xxHUHI-M4/S(S)), \u0434\u043e 250807 (iDS-81xxHUHI-M8/S(S)), \u0434\u043e 250807 (DS-71xxHGHI-M1(/T)), \u0434\u043e 250807 (DS-72xxHGHI-M1(/T)), \u0434\u043e 250807 (DS-ExxHGHI-xx), \u0434\u043e 250807 (iDS-71xxHQHI-M1/S), \u0434\u043e 250807 (iDS-72xxHQHI-M1/E), \u0434\u043e 250807 (iDS-71xxHQHI-M1/T), \u0434\u043e 250807 (iDS-72xxHQHI-M1/T), \u0434\u043e 250807 (iDS-73xxHQHI-M4/S), \u0434\u043e 250807 (iDS-81xxHQHI-M8/S), \u0434\u043e 250807 (iDS-90xxHQHI-M8/S), \u0434\u043e 250807 (iDS-ExxHQHI-xx), \u0434\u043e 250807 (iDS-71xxHUHI-M1/S), \u0434\u043e 250807 (iDS-72xxHUHI-M1/E), \u0434\u043e 250807 (iDS-72xxHUHI-M1/T), \u0434\u043e 250807 (iDS-72xxHUHI-Mx/X), \u0434\u043e 250807 (iDS-72xxHUHI-Mx/PXT), \u0434\u043e 250807 (iDS-73xxHUHI-M4/S), \u0434\u043e 250807 (iDS-90xxHUHI-M8/S), \u0434\u043e 250807 (iDS-ExxHUHI-xx), \u0434\u043e 250807 (DS-A806xxSI), \u0434\u043e 250807 (DS-AT1000SI), \u0434\u043e 250807 (iDS-96xxxNXI-Hx), \u0434\u043e 250807 (iDS-96064NXI-I16), \u0434\u043e 250807 (iDS-96xxxNXI-Ix/AI), \u0434\u043e 250807 (iDS-67xxNXI-Mx/X), \u0434\u043e 250807 (iDS-76xxNXI-Mx/X), \u0434\u043e 250807 (iDS-77xxNXI-Mx/X), \u0434\u043e 250807 (iDS-96xxNXI-Mx/X), \u0434\u043e 250807 (iDS-96xxxNXI-Mx/X), \u0434\u043e 250807 (iDS-96xxxNXI-Hx/AI), \u0434\u043e 250807 (iDS-96xxNXI-Mx/AI), \u0434\u043e 250807 (iDS-67xxNXI-Mx/AI), \u0434\u043e 250807 (iDS-67xxxNXI-Mx/AI), \u0434\u043e 250807 (iDS-67xxNXI-S/T), \u0434\u043e 250807 (iDS-67xxNXI-S), \u0434\u043e 250807 (iDS-6704NXI/AI), \u0434\u043e 250807 (iDS-67xxNXI-P1), \u0434\u043e 250807 (iDS-7608NXI-P2), \u0434\u043e 250807 (iDS-77xxNXI-P4), \u0434\u043e 250807 (iDS-96xxNXI-Px), \u0434\u043e 5.7.13_230822 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (DS-2CD1xxxG2), \u0434\u043e 5.7.13_230822 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (DS-2CD3xx1G2), \u0434\u043e 5.7.13_230822 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (HWI-xxxxHA), \u0434\u043e 5.7.13_230822 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (IPC-xxxxHA), \u0434\u043e 5.7.210_240826 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (DS-2CD2Dx5G1), \u0434\u043e 5.7.210_240826 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (DS-2CD64x5G1), \u0434\u043e 5.7.21_240814 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (DS-2CD29xxG0), \u0434\u043e 5.7.21_240814 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (DS-2XE6xxxG0), \u0434\u043e 5.7.21_240814 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (DS-2XC6xxxG0), \u0434\u043e 5.7.23_241015 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (DS-2CD1xxxG0(T)), \u0434\u043e 5.7.23_241015 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (DS-2CD1xx1), \u0434\u043e 5.7.23_241015 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (DS-2CD3xx1G0), \u0434\u043e 5.7.23_241015 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (DS-2CD2xx1G0), \u0434\u043e 5.7.23_241015 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (IPC-xxxxH), \u0434\u043e 5.7.23_241015 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (HWI-xxxH(C))",
  "\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439:\nhttps://www.hikvision.com/en/support/cybersecurity/security-advisory/buffer-overflow-vulnerabilities-in-some-hikvision-products/",
  "\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "12.01.2026",
  "\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "30.01.2026",
  "\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "30.01.2026",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2026-01038",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2025-66177",
  "\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
  "\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
  "\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "DS-96xxxNI-Hx, DS-96xxxNI-Ix, DS-96xxNXI-Sx, DS-96xxxNXI-Sx, DS-76xxNXI-Mx/VPro, DS-96xxNXI-Mx/VPro, DS-96xxxNXI-Mx/VPro, DS-76xxNI-Mx, DS-77xxNI-Mx, DS-96xxNXI-Mx, DS-96xxxNXI-Mx, DS-86xxxNXI-Mx, DS-76xxNXI-Ix/S, DS-77xxNXI-Ix/S, DS-86xxNXI-Ix/S, DS-96xxNXI-Ix/S, DS-76xxNXI-Kx(/xP), DS-77xxNXI-Kx(/xP), DS-76xxNXI-Kx(/xP)/Vpro, DS-77xxNXI-Kx(/xP)/Vpro, DS-76xxNI-Qx(/xP), DS-71xxNI-Q1(/xP)/M, DS-71xxNI-Q1(/xP), DS-710xNI-G1/(xP)/M, DS-76xxNI-Q1(/xP), DS-76xxNI-Q2(/xP), DS-76xxNXI-K1(/xP), DS-76xxNXI-K2(/xP), DS-77xxNXI-K4(/xP), DS-86xxNXI-K8(/xP), DS-76xxNXI-K1(/xP)/VPro, DS-76xxNXI-K2(/xP)/VPro, DS-77xxNXI-K4(/xP)/VPro, iDS-71xxHGHI-M1(/T), iDS-72xxHGHI-M1(/T), iDS-71xxHQHI-M1(/T), iDS-72xxHQHI-M1(/T), iDS-72xxHQHI-Mx/XT, iDS-72xxHUHI-Mx/XT, iDS-72xxHTHI-Mx/XT, iDS-90xxHUHI-M8/S(S), iDS-73xxHUHI-M4/S(S), iDS-81xxHUHI-M8/S(S), DS-71xxHGHI-M1(/T), DS-72xxHGHI-M1(/T), DS-ExxHGHI-xx, iDS-71xxHQHI-M1/S, iDS-72xxHQHI-M1/E, iDS-71xxHQHI-M1/T, iDS-72xxHQHI-M1/T, iDS-73xxHQHI-M4/S, iDS-81xxHQHI-M8/S, iDS-90xxHQHI-M8/S, iDS-ExxHQHI-xx, iDS-71xxHUHI-M1/S, iDS-72xxHUHI-M1/E, iDS-72xxHUHI-M1/T, iDS-72xxHUHI-Mx/X, iDS-72xxHUHI-Mx/PXT, iDS-73xxHUHI-M4/S, iDS-90xxHUHI-M8/S, iDS-ExxHUHI-xx, DS-A806xxSI, DS-AT1000SI, iDS-96xxxNXI-Hx, iDS-96064NXI-I16, iDS-96xxxNXI-Ix/AI, iDS-67xxNXI-Mx/X, iDS-76xxNXI-Mx/X, iDS-77xxNXI-Mx/X, iDS-96xxNXI-Mx/X, iDS-96xxxNXI-Mx/X, iDS-96xxxNXI-Hx/AI, iDS-96xxNXI-Mx/AI, iDS-67xxNXI-Mx/AI, iDS-67xxxNXI-Mx/AI, iDS-67xxNXI-S/T, iDS-67xxNXI-S, iDS-6704NXI/AI, iDS-67xxNXI-P1, iDS-7608NXI-P2, iDS-77xxNXI-P4, iDS-96xxNXI-Px, DS-2CD1xxxG2, DS-2CD3xx1G2, HWI-xxxxHA, IPC-xxxxHA, DS-2CD2Dx5G1, DS-2CD64x5G1, DS-2CD29xxG0, DS-2XE6xxxG0, DS-2XC6xxxG0, DS-2CD1xxxG0(T), DS-2CD1xx1, DS-2CD3xx1G0, DS-2CD2xx1G0, IPC-xxxxH, HWI-xxxH(C)",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": null,
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0444\u0443\u043d\u043a\u0446\u0438\u0438 Search \u0438 Discovery \u043c\u0438\u043a\u0440\u043e\u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432 \u0432\u0438\u0434\u0435\u043e\u043d\u0430\u0431\u043b\u044e\u0434\u0435\u043d\u0438\u044f Hikvision  Network Video Recorder (NVR), Digital Video Recorder (DVR), Centralized Video Recorder (CVR) \u0438 IP Camera (IPC), \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438",
  "\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041f\u0435\u0440\u0435\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u0435 \u0431\u0443\u0444\u0435\u0440\u0430 \u0432 \u0441\u0442\u0435\u043a\u0435 (CWE-121)",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0444\u0443\u043d\u043a\u0446\u0438\u0438 Search \u0438 Discovery \u043c\u0438\u043a\u0440\u043e\u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432 \u0432\u0438\u0434\u0435\u043e\u043d\u0430\u0431\u043b\u044e\u0434\u0435\u043d\u0438\u044f Hikvision  Network Video Recorder (NVR), Digital Video Recorder (DVR), Centralized Video Recorder (CVR) \u0438 IP Camera (IPC)  \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043f\u0435\u0440\u0435\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u0435\u043c \u0431\u0443\u0444\u0435\u0440\u0430 \u0432 \u0441\u0442\u0435\u043a\u0435. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e, \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438 \u043f\u0443\u0442\u0435\u043c \u043e\u0442\u043f\u0440\u0430\u0432\u043a\u0438 \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0441\u043e\u0437\u0434\u0430\u043d\u043d\u044b\u0435 \u043f\u0430\u043a\u0435\u0442\u044b \u043d\u0430 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u043e",
  "\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
  "\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
  "\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041c\u0430\u043d\u0438\u043f\u0443\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u0430\u043c\u0438 \u0434\u0430\u043d\u043d\u044b\u0445",
  "\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://www.hikvision.com/en/support/cybersecurity/security-advisory/buffer-overflow-vulnerabilities-in-some-hikvision-products/",
  "\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
  "\u0422\u0438\u043f \u041f\u041e": "\u0421\u0435\u0442\u0435\u0432\u043e\u0435 \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e, \u041f\u041e \u0441\u0435\u0442\u0435\u0432\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e-\u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0433\u043e \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430, \u041c\u0438\u043a\u0440\u043e\u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u044b\u0439 \u043a\u043e\u0434",
  "\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-121",
  "\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 8,3)\n\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.1 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 8,8)"
}

CVE-2025-66177 (GCVE-0-2025-66177)

Vulnerability from cvelistv5 – Published: 2026-01-13 01:47 – Updated: 2026-01-13 17:27

Summary

There is a Stack overflow Vulnerability in the device Search and Discovery feature of Hikvision NVR/DVR/CVR/IPC models. If exploited, an attacker on the same local area network (LAN) could cause the device to malfunction by sending specially crafted packets to an unpatched device.

Severity ?

8.8 (High)


                        
                          CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE

CWE-121 - Stack-based Buffer Overflow

Assigner

hikvision

References

URL

Tags

https://www.hikvision.com/en/support/cybersecurit…

Impacted products

Vendor

Product

Version

Hikvision

DS-96xxxNI-Hx

Affected: Build date before 250807

Hikvision	DS-96xxxNI-Ix	Affected: Build date before 250807
Hikvision	DS-96xxNXI-Sx	Affected: Build date before 250807
Hikvision	DS-96xxxNXI-Sx	Affected: Build date before 250807
Hikvision	DS-76xxNXI-Mx/VPro	Affected: Build date before 250807
Hikvision	DS-96xxNXI-Mx/VPro	Affected: Build date before 250807
Hikvision	DS-76xxNI-Mx	Affected: Build date before 250807
Hikvision	DS-77xxNI-Mx	Affected: Build date before 250807
Hikvision	DS-96xxNXI-Mx	Affected: Build date before 250807
Hikvision	DS-96xxxNXI-Mx	Affected: Build date before 250807
Hikvision	DS-86xxxNXI-Mx	Affected: Build date before 250807
Hikvision	DS-76xxNXI-Ix/S	Affected: Build date before 250807
Hikvision	DS-77xxNXI-Ix/S	Affected: Build date before 250807
Hikvision	DS-86xxNXI-Ix/S	Affected: Build date before 250807
Hikvision	DS-96xxNXI-Ix/S	Affected: Build date before 250807
Hikvision	DS-76xxNXI-Ix/VPro	Affected: Build date before 250807
Hikvision	DS-77xxNXI-Ix/VPro	Affected: Build date before 250807
Hikvision	DS-76xxNXI-Kx(/xP) including(D)、(E)、(B)	Affected: Build date before 250807
Hikvision	DS-77xxNXI-Kx(/xP) including(D)、(E)、(B)	Affected: Build date before 250807
Hikvision	DS-76xxNXI-Kx(/xP)/Vpro	Affected: Build date before 250807
Hikvision	DS-77xxNXI-Kx(/xP)/Vpro	Affected: Build date before 250807
Hikvision	DS-76xxNI-Qx(/xP) including(D)、(E)	Affected: Build date before 250807
Hikvision	DS-71xxNI-Q1(/xP)/M	Affected: Build date before 250807
Hikvision	DS-71xxNI-Q1(/xP)	Affected: Build date before 250807
Hikvision	DS-710xNI-G1/(xP)/M	Affected: Build date before 250807
Hikvision	DS-71xxNI-Q1(/xP)	Affected: Build date before 250807
Hikvision	DS-71xxNI-Q1(/xP)/M	Affected: Build date before 250807
Hikvision	DS-76xxNI-Q1(/xP)	Affected: Build date before 250807
Hikvision	DS-76xxNI-Q2(/xP)	Affected: Build date before 250807
Hikvision	DS-76xxNXI-K1(/xP)	Affected: Build date before 250807
Hikvision	DS-76xxNXI-K2(/xP)	Affected: Build date before 250807
Hikvision	DS-77xxNXI-K4(/xP)	Affected: Build date before 250807
Hikvision	DS-86xxNXI-K8(/xP)	Affected: Build date before 250807
Hikvision	DS-76xxNXI-K1(/xP)/VPro	Affected: Build date before 250807
Hikvision	DS-76xxNXI-K2(/xP)/VPro	Affected: Build date before 250807
Hikvision	DS-77xxNXI-K4(/xP)/VPro	Affected: Build date before 250807
Hikvision	iDS-71xxHGHI-M1(/T)	Affected: Build date before 250807
Hikvision	iDS-72xxHGHI-M1(/T)	Affected: Build date before 250807
Hikvision	iDS-71xxHQHI-M1(/T)	Affected: Build date before 250807
Hikvision	iDS-72xxHQHI-M1(/T)	Affected: Build date before 250807
Hikvision	iDS-72xxHQHI-Mx/XT	Affected: Build date before 250807
Hikvision	iDS-72xxHUHI-Mx/XT	Affected: Build date before 250807
Hikvision	iDS-72xxHTHI-Mx/XT	Affected: Build date before 250807
Hikvision	iDS-90xxHUHI-M8/S(S)	Affected: Build date before 250807
Hikvision	iDS-73xxHUHI-M4/S(S)	Affected: Build date before 250807
Hikvision	iDS-81xxHUHI-M8/S(S)	Affected: Build date before 250807
Hikvision	DS-71xxHGHI-M1(/T)	Affected: Build date before 250807
Hikvision	DS-72xxHGHI-M1(/T)	Affected: Build date before 250807
Hikvision	DS-ExxHGHI-xx	Affected: Build date before 250807
Hikvision	iDS-71xxHQHI-M1/S	Affected: Build date before 250807
Hikvision	iDS-72xxHQHI-M1/E	Affected: Build date before 250807
Hikvision	iDS-71xxHQHI-M1/T	Affected: Build date before 250807
Hikvision	iDS-72xxHQHI-M1/T	Affected: Build date before 250807
Hikvision	iDS-72xxHQHI-Mx/XT	Affected: Build date before 250807
Hikvision	iDS-73xxHQHI-M4/S	Affected: Build date before 250807
Hikvision	iDS-81xxHQHI-M8/S	Affected: Build date before 250807
Hikvision	iDS-90xxHQHI-M8/S	Affected: Build date before 250807
Hikvision	iDS-ExxHQHI-xx	Affected: Build date before 250807
Hikvision	iDS-71xxHUHI-M1/S	Affected: Build date before 250807
Hikvision	iDS-72xxHUHI-M1/E	Affected: Build date before 250807
Hikvision	iDS-72xxHUHI-M1/T	Affected: Build date before 250807
Hikvision	iDS-72xxHUHI-Mx/X	Affected: Build date before 250807
Hikvision	iDS-72xxHUHI-Mx/XT	Affected: Build date before 250807
Hikvision	iDS-72xxHUHI-Mx/PXT	Affected: Build date before 250807
Hikvision	iDS-73xxHUHI-M4/S	Affected: Build date before 250807
Hikvision	iDS-90xxHUHI-M8/S	Affected: Build date before 250807
Hikvision	iDS-ExxHUHI-xx	Affected: Build date before 250807
Hikvision	iDS-72xxHTHI-Mx/XT	Affected: Build date before 250807
Hikvision	DS-A806xxSI	Affected: Build date before 250807
Hikvision	DS-AT1000SI	Affected: Build date before 250807
Hikvision	iDS-96xxxNXI-Hx	Affected: Build date before 250807
Hikvision	iDS-96064NXI-I16	Affected: Build date before 250807
Hikvision	iDS-96xxxNXI-Ix/AI	Affected: Build date before 250807
Hikvision	iDS-67xxNXI-Mx/X	Affected: Build date before 250807
Hikvision	iDS-76xxNXI-Mx/X	Affected: Build date before 250807
Hikvision	iDS-77xxNXI-Mx/X	Affected: Build date before 250807
Hikvision	iDS-96xxNXI-Mx/X	Affected: Build date before 250807
Hikvision	iDS-96xxxNXI-Mx/X	Affected: Build date before 250807
Hikvision	iDS-96xxxNXI-Hx/AI	Affected: Build date before 250807
Hikvision	iDS-96xxNXI-Mx/AI	Affected: Build date before 250807
Hikvision	iDS-67xxNXI-Mx/AI	Affected: Build date before 250807
Hikvision	iDS-67xxxNXI-Mx/AI	Affected: Build date before 250807
Hikvision	iDS-67xxNXI-S/T	Affected: Build date before 250807
Hikvision	iDS-67xxNXI-S	Affected: Build date before 250807
Hikvision	iDS-6704NXI/AI	Affected: Build date before 250807
Hikvision	iDS-67xxNXI-P1	Affected: Build date before 250807
Hikvision	iDS-7608NXI-P2	Affected: Build date before 250807
Hikvision	iDS-77xxNXI-P4	Affected: Build date before 250807
Hikvision	iDS-96xxNXI-Px	Affected: Build date before 250807
Hikvision	DS-2CD1xxxG2	Affected: Versions below V5.7.13_230822 (including V5.7.13_230822)
Hikvision	DS-2CD3xx1G2	Affected: Versions below V5.7.13_230822 (including V5.7.13_230822)
Hikvision	HWI-xxxxHA	Affected: Versions below V5.7.13_230822 (including V5.7.13_230822)
Hikvision	IPC-xxxxHA	Affected: Versions below V5.7.13_230822 (including V5.7.13_230822)
Hikvision	DS-2CD2Dx5G1	Affected: Versions below V5.7.210_240826 (including V5.7.210_240826)
Hikvision	DS-2CD64x5G1	Affected: Versions below V5.7.210_240826 (including V5.7.210_240826)
Hikvision	DS-2CD29xxG0	Affected: Versions below V5.7.21_240814 (including V5.7.21_240814)
Hikvision	DS-2XE6xxxG0	Affected: Versions below V5.7.7build241203 (including V5.7.7build241203)
Hikvision	DS-2XC6xxxG0	Affected: Versions below V5.7.7build241203 (including V5.7.7build241203)
Hikvision	DS-2CD1xxxG0(T)	Affected: Versions below V5.7.23_241015 (including V5.7.23_241015)
Hikvision	DS-2CD1xx1	Affected: Versions below V5.7.23_241015 (including V5.7.23_241015)
Hikvision	DS-2CD3xx1G0	Affected: Versions below V5.7.23_241015 (including V5.7.23_241015)
Hikvision	DS-2CD2xx1G0	Affected: Versions below V5.7.23_241015 (including V5.7.23_241015)
Hikvision	IPC-xxxxH	Affected: Versions below V5.7.23_241015 (including V5.7.23_241015)
Hikvision	HWI-xxxH(C)	Affected: Versions below V5.7.23_241015 (including V5.7.23_241015)

Credits

Angel Lozano Alcazar Pedro Guillen Nuñez

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2025-66177",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-01-13T14:26:06.385030Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-121",
                "description": "CWE-121 Stack-based Buffer Overflow",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-01-13T17:27:13.199Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "DS-96xxxNI-Hx",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "DS-96xxxNI-Ix",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "DS-96xxNXI-Sx",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "DS-96xxxNXI-Sx",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "DS-76xxNXI-Mx/VPro",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "DS-96xxNXI-Mx/VPro",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "DS-76xxNI-Mx",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "DS-77xxNI-Mx",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "DS-96xxNXI-Mx",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "DS-96xxxNXI-Mx",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "DS-86xxxNXI-Mx",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "DS-76xxNXI-Ix/S",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "DS-77xxNXI-Ix/S",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "DS-86xxNXI-Ix/S",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "DS-96xxNXI-Ix/S",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "DS-76xxNXI-Ix/VPro",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "DS-77xxNXI-Ix/VPro",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "DS-76xxNXI-Kx(/xP)  including(D)\u3001(E)\u3001(B)",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "DS-77xxNXI-Kx(/xP) including(D)\u3001(E)\u3001(B)",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "DS-76xxNXI-Kx(/xP)/Vpro",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "DS-77xxNXI-Kx(/xP)/Vpro",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "DS-76xxNI-Qx(/xP)   including(D)\u3001(E)",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "DS-71xxNI-Q1(/xP)/M",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "DS-71xxNI-Q1(/xP)",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "DS-710xNI-G1/(xP)/M",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "DS-71xxNI-Q1(/xP)",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "DS-71xxNI-Q1(/xP)/M",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "DS-76xxNI-Q1(/xP)",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "DS-76xxNI-Q2(/xP)",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "DS-76xxNXI-K1(/xP)",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "DS-76xxNXI-K2(/xP)",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "DS-77xxNXI-K4(/xP)",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "DS-86xxNXI-K8(/xP)",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "DS-76xxNXI-K1(/xP)/VPro",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "DS-76xxNXI-K2(/xP)/VPro",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "DS-77xxNXI-K4(/xP)/VPro",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-71xxHGHI-M1(/T)",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-72xxHGHI-M1(/T)",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-71xxHQHI-M1(/T)",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-72xxHQHI-M1(/T)",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-72xxHQHI-Mx/XT",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-72xxHUHI-Mx/XT",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-72xxHTHI-Mx/XT",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-90xxHUHI-M8/S(S)",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-73xxHUHI-M4/S(S)",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-81xxHUHI-M8/S(S)",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "DS-71xxHGHI-M1(/T)",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "DS-72xxHGHI-M1(/T)",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "DS-ExxHGHI-xx",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-71xxHQHI-M1/S",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-72xxHQHI-M1/E",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-71xxHQHI-M1/T",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-72xxHQHI-M1/T",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-72xxHQHI-Mx/XT",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-73xxHQHI-M4/S",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-81xxHQHI-M8/S",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-90xxHQHI-M8/S",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-ExxHQHI-xx",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-71xxHUHI-M1/S",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-72xxHUHI-M1/E",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-72xxHUHI-M1/T",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-72xxHUHI-Mx/X",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-72xxHUHI-Mx/XT",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-72xxHUHI-Mx/PXT",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-73xxHUHI-M4/S",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-90xxHUHI-M8/S",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-ExxHUHI-xx",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-72xxHTHI-Mx/XT",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "DS-A806xxSI",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "DS-AT1000SI",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-96xxxNXI-Hx",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-96064NXI-I16",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-96xxxNXI-Ix/AI",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-67xxNXI-Mx/X",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-76xxNXI-Mx/X",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-77xxNXI-Mx/X",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-96xxNXI-Mx/X",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-96xxxNXI-Mx/X",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-96xxxNXI-Hx/AI",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-96xxNXI-Mx/AI",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-67xxNXI-Mx/AI",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-67xxxNXI-Mx/AI",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-67xxNXI-S/T",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-67xxNXI-S",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-6704NXI/AI",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-67xxNXI-P1",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-7608NXI-P2",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-77xxNXI-P4",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "iDS-96xxNXI-Px",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Build date before 250807"
            }
          ]
        },
        {
          "product": "DS-2CD1xxxG2",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Versions below V5.7.13_230822 (including V5.7.13_230822)"
            }
          ]
        },
        {
          "product": "DS-2CD3xx1G2",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Versions below V5.7.13_230822 (including V5.7.13_230822)"
            }
          ]
        },
        {
          "product": "HWI-xxxxHA",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Versions below V5.7.13_230822 (including V5.7.13_230822)"
            }
          ]
        },
        {
          "product": "IPC-xxxxHA",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Versions below V5.7.13_230822 (including V5.7.13_230822)"
            }
          ]
        },
        {
          "product": "DS-2CD2Dx5G1",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Versions below V5.7.210_240826 (including V5.7.210_240826)"
            }
          ]
        },
        {
          "product": "DS-2CD64x5G1",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Versions below V5.7.210_240826 (including V5.7.210_240826)"
            }
          ]
        },
        {
          "product": "DS-2CD29xxG0",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Versions below V5.7.21_240814 (including V5.7.21_240814)"
            }
          ]
        },
        {
          "product": "DS-2XE6xxxG0",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Versions below V5.7.7build241203 (including V5.7.7build241203)"
            }
          ]
        },
        {
          "product": "DS-2XC6xxxG0",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Versions below V5.7.7build241203 (including V5.7.7build241203)"
            }
          ]
        },
        {
          "product": "DS-2CD1xxxG0(T)",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Versions below V5.7.23_241015 (including V5.7.23_241015)"
            }
          ]
        },
        {
          "product": "DS-2CD1xx1",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Versions below V5.7.23_241015 (including V5.7.23_241015)"
            }
          ]
        },
        {
          "product": "DS-2CD3xx1G0",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Versions below V5.7.23_241015 (including V5.7.23_241015)"
            }
          ]
        },
        {
          "product": "DS-2CD2xx1G0",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Versions below V5.7.23_241015 (including V5.7.23_241015)"
            }
          ]
        },
        {
          "product": "IPC-xxxxH",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Versions below V5.7.23_241015 (including V5.7.23_241015)"
            }
          ]
        },
        {
          "product": "HWI-xxxH(C)",
          "vendor": "Hikvision",
          "versions": [
            {
              "status": "affected",
              "version": "Versions below V5.7.23_241015 (including V5.7.23_241015)"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "value": "Angel Lozano Alcazar"
        },
        {
          "lang": "en",
          "type": "finder",
          "value": "Pedro Guillen Nu\u00f1ez"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "There is a Stack overflow Vulnerability in the device Search and Discovery feature of Hikvision NVR/DVR/CVR/IPC models. If exploited, an attacker on the same local area network (LAN) could cause the device to malfunction by sending specially crafted packets to an unpatched device."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "ADJACENT_NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-01-13T01:47:54.031Z",
        "orgId": "da451dce-859b-4e51-8b87-9c8b60d19b32",
        "shortName": "hikvision"
      },
      "references": [
        {
          "url": "https://www.hikvision.com/en/support/cybersecurity/security-advisory/buffer-overflow-vulnerabilities-in-some-hikvision-products/"
        }
      ],
      "x_generator": {
        "engine": "cveClient/1.0.15"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "da451dce-859b-4e51-8b87-9c8b60d19b32",
    "assignerShortName": "hikvision",
    "cveId": "CVE-2025-66177",
    "datePublished": "2026-01-13T01:47:54.031Z",
    "dateReserved": "2025-11-24T08:59:35.903Z",
    "dateUpdated": "2026-01-13T17:27:13.199Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

BDU:2026-01038

CVE-2025-66177 (GCVE-0-2025-66177)

Tags

Sightings

Nomenclature