Search
Find a vulnerability
Search criteria
ⓘ
Use this form to refine search results.
Full-text search supports keyword queries with ranking and filtering.
You can combine vendor, product, and sources to narrow results.
Enable “Apply ordering” to sort by date instead of relevance.
2 vulnerabilities by H.VIEW
CVE-2026-56414 (GCVE-0-2026-56414)
Vulnerability from cvelistv5 – Published: 2026-06-26 23:00 – Updated: 2026-06-26 23:00
VLAI
Title
H.VIEW HV-500S6 IP Camera Unrestricted Upload of File with Dangerous Type
Summary
A vulnerability exists in H.View IP cameras certificate-related upload interfaces allow authenticated users to store arbitrary file content to fixed, persistent filesystem locations without validating file type, structure, or size. This design omission enables the placement of unexpected or malformed data in locations intended for trusted certificate material, which could affect system integrity or behavior even after reboot.
Severity
CWE
Assigner
References
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| H.VIEW | HV-500S6 IP Camera |
Affected:
IPCAM_V4.06.88.251229
|
Credits
{
"containers": {
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "HV-500S6 IP Camera",
"vendor": "H.VIEW",
"versions": [
{
"status": "affected",
"version": "IPCAM_V4.06.88.251229"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "finder",
"value": "Fukuhara Rikuto of Smooth Inc. (CTO) and Hosei University reported this vulnerability to CISA."
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\u003cspan\u003eA vulnerability exists in H.View IP cameras certificate-related upload interfaces allow authenticated users to store arbitrary file content to fixed, persistent filesystem locations without validating file type, structure, or size. This design omission enables the placement of unexpected or malformed data in locations intended for trusted certificate material, which could affect system integrity or behavior even after reboot.\u003c/span\u003e"
}
],
"value": "A vulnerability exists in H.View IP cameras certificate-related upload interfaces allow authenticated users to store arbitrary file content to fixed, persistent filesystem locations without validating file type, structure, or size. This design omission enables the placement of unexpected or malformed data in locations intended for trusted certificate material, which could affect system integrity or behavior even after reboot."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
},
{
"cvssV4_0": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "LOW",
"attackRequirements": "NONE",
"attackVector": "NETWORK",
"baseScore": 8.6,
"baseSeverity": "HIGH",
"exploitMaturity": "NOT_DEFINED",
"privilegesRequired": "HIGH",
"providerUrgency": "NOT_DEFINED",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "NONE",
"valueDensity": "NOT_DEFINED",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
"version": "4.0",
"vulnAvailabilityImpact": "HIGH",
"vulnConfidentialityImpact": "HIGH",
"vulnIntegrityImpact": "HIGH",
"vulnerabilityResponseEffort": "NOT_DEFINED"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-434",
"description": "CWE-434",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-06-26T23:00:39.958Z",
"orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
"shortName": "icscert"
},
"references": [
{
"url": "https://hviewsmart.com/pages/contact-us"
},
{
"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-26-176-05"
},
{
"url": "https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-176-05.json"
}
],
"source": {
"advisory": "ICSA-26-176-05",
"discovery": "EXTERNAL"
},
"title": "H.VIEW HV-500S6 IP Camera Unrestricted Upload of File with Dangerous Type",
"workarounds": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\u003cspan\u003eH.View did not respond to CISA\u0027s request to coordinate. Users are encouraged to reach out to H.View for support. \u003ca href=\"https://hviewsmart.com/pages/contact-us\"\u003ehttps://hviewsmart.com/pages/contact-us\u0026nbsp;\u003c/a\u003e\u003c/span\u003e"
}
],
"value": "H.View did not respond to CISA\u0027s request to coordinate. Users are encouraged to reach out to H.View for support. https://hviewsmart.com/pages/contact-us\u00a0 https://hviewsmart.com/pages/contact-us"
}
],
"x_generator": {
"engine": "Vulnogram 1.0.2"
}
}
},
"cveMetadata": {
"assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
"assignerShortName": "icscert",
"cveId": "CVE-2026-56414",
"datePublished": "2026-06-26T23:00:39.958Z",
"dateReserved": "2026-06-22T20:13:36.501Z",
"dateUpdated": "2026-06-26T23:00:39.958Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-55975 (GCVE-0-2026-55975)
Vulnerability from cvelistv5 – Published: 2026-06-26 22:58 – Updated: 2026-06-26 22:58
VLAI
Title
H.VIEW HV-500S6 IP Camera OS Command Injection
Summary
A vulnerability exists in H.View IP cameras that could allow an authenticated user to supply unsanitized XML fields to the device's certificate generation interface, which are incorporated into a backend certificate creation command without proper input validation. This may allow for command execution with elevated privileges during certificate generation.
Severity
CWE
Assigner
References
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| H.VIEW | HV-500S6 IP Camera |
Affected:
IPCAM_V4.06.88.251229
|
Credits
{
"containers": {
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "HV-500S6 IP Camera",
"vendor": "H.VIEW",
"versions": [
{
"status": "affected",
"version": "IPCAM_V4.06.88.251229"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "finder",
"value": "Fukuhara Rikuto of Smooth Inc. (CTO) and Hosei University reported this vulnerability to CISA."
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\u003cspan\u003eA vulnerability exists in H.View IP cameras that could allow an authenticated user to supply unsanitized XML fields to the device\u0027s certificate generation interface, which are incorporated into a backend certificate creation command without proper input validation. This may allow for command execution with elevated privileges during certificate generation.\u003c/span\u003e"
}
],
"value": "A vulnerability exists in H.View IP cameras that could allow an authenticated user to supply unsanitized XML fields to the device\u0027s certificate generation interface, which are incorporated into a backend certificate creation command without proper input validation. This may allow for command execution with elevated privileges during certificate generation."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
},
{
"cvssV4_0": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "LOW",
"attackRequirements": "NONE",
"attackVector": "NETWORK",
"baseScore": 8.6,
"baseSeverity": "HIGH",
"exploitMaturity": "NOT_DEFINED",
"privilegesRequired": "HIGH",
"providerUrgency": "NOT_DEFINED",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "NONE",
"valueDensity": "NOT_DEFINED",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
"version": "4.0",
"vulnAvailabilityImpact": "HIGH",
"vulnConfidentialityImpact": "HIGH",
"vulnIntegrityImpact": "HIGH",
"vulnerabilityResponseEffort": "NOT_DEFINED"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-78",
"description": "CWE-78",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-06-26T22:58:52.085Z",
"orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
"shortName": "icscert"
},
"references": [
{
"url": "https://hviewsmart.com/pages/contact-us"
},
{
"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-26-176-05"
},
{
"url": "https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-176-05.json"
}
],
"source": {
"advisory": "ICSA-26-176-05",
"discovery": "EXTERNAL"
},
"title": "H.VIEW HV-500S6 IP Camera OS Command Injection",
"workarounds": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\u003cspan\u003eH.View did not respond to CISA\u0027s request to coordinate. Users are encouraged to reach out to H.View for support. \u003ca href=\"https://hviewsmart.com/pages/contact-us\"\u003ehttps://hviewsmart.com/pages/contact-us\u0026nbsp;\u003c/a\u003e\u003c/span\u003e"
}
],
"value": "H.View did not respond to CISA\u0027s request to coordinate. Users are encouraged to reach out to H.View for support. https://hviewsmart.com/pages/contact-us\u00a0 https://hviewsmart.com/pages/contact-us"
}
],
"x_generator": {
"engine": "Vulnogram 1.0.2"
}
}
},
"cveMetadata": {
"assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
"assignerShortName": "icscert",
"cveId": "CVE-2026-55975",
"datePublished": "2026-06-26T22:58:52.085Z",
"dateReserved": "2026-06-22T20:13:36.497Z",
"dateUpdated": "2026-06-26T22:58:52.085Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}