FKIE_CVE-2025-66176
Vulnerability from fkie_nvd - Published: 2026-01-13 03:16 - Updated: 2026-01-22 20:35
Severity ?
Summary
There is a Stack overflow Vulnerability in the device Search and Discovery feature of Hikvision Access Control Products. If exploited, an attacker on the same local area network (LAN) could cause the device to malfunction by sending specially crafted packets to an unpatched device.
References
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hikvision:ds-k1t331_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "3FEF4CC2-2B13-4A80-8C57-68600AE9C93A",
"versionEndExcluding": "3.7.80",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hikvision:ds-k1t331:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9C6570A0-091A-49E4-8B04-650397FBD93D",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hikvision:ds-k1t341a_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "0B6CAC82-004C-4919-9234-89004136537D",
"versionEndExcluding": "3.7.80",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hikvision:ds-k1t341a:-:*:*:*:*:*:*:*",
"matchCriteriaId": "595B2854-FCC2-4DC9-9821-7545FE940FAC",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hikvision:ds-k1t341b_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "BA1A7F5D-F33C-4F15-8639-30CDCD7C1455",
"versionEndExcluding": "3.7.80",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hikvision:ds-k1t341b:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3A7C6C26-52D1-4E9D-8448-29B78F692448",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hikvision:ds-k1t671_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "7841DA8E-1AE6-46F6-BB86-360B8624F85D",
"versionEndExcluding": "3.7.80",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hikvision:ds-k1t671:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4B322AE4-4BE3-46EE-BFFD-730274270D52",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hikvision:ds-k5671_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "9362042E-F45C-43E3-9709-3D17DE1E476A",
"versionEndExcluding": "3.7.80",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hikvision:ds-k5671:-:*:*:*:*:*:*:*",
"matchCriteriaId": "33DF42F9-AA7B-4275-A0F5-6CD1C395379F",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hikvision:ds-k1t672_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "A68F9962-7C8E-46AF-BFA2-372191D585AA",
"versionEndExcluding": "3.7.80",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hikvision:ds-k1t672:-:*:*:*:*:*:*:*",
"matchCriteriaId": "58E41B4D-6601-4F72-BE90-1A119FFB3A0A",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hikvision:ds-k1t680_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "E4F9199C-DEAD-430C-B2A7-FF493DAEB8EA",
"versionEndExcluding": "3.7.80",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hikvision:ds-k1t680:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9166334C-35C0-4220-AF7B-1964E32B4451",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hikvision:ds-k1t981_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "AA7CA850-60FF-4A8D-8B48-A0F92CA3C893",
"versionEndExcluding": "3.7.80",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hikvision:ds-k1t981:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FF7DF3E8-F9C0-4475-B67B-DF390F6FCEA2",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hikvision:ds-k1t341c_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "D45B0E65-1F34-432B-98F3-4BD668BFDBFB",
"versionEndExcluding": "3.3.180",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hikvision:ds-k1t341c:-:*:*:*:*:*:*:*",
"matchCriteriaId": "592F9F35-4C09-4EF2-BA57-D0A2A1DD9CAD",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hikvision:ds-k1t670_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "938D48C8-CABA-4BA8-AF8C-F3A32E9B5FF5",
"versionEndExcluding": "4.48.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hikvision:ds-k1t670:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D4DB9DCF-7203-4A56-8532-55930891BB1C",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hikvision:ds-k1t673_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "8D8CA557-266F-415B-8470-BDD7D7082C65",
"versionEndExcluding": "4.48.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hikvision:ds-k1t673:-:*:*:*:*:*:*:*",
"matchCriteriaId": "317F27A1-FA60-4970-B59E-FB02C81E94FE",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hikvision:ds-k1t8003_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "807EF865-6176-4B6B-B054-53371272C007",
"versionEndIncluding": "1.4.21",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hikvision:ds-k1t8003:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D63B00A4-6461-49E1-812C-6A4C3134A18F",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hikvision:ds-k1t804a_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "477FD324-96CA-4918-A757-A42AB88F99E7",
"versionEndExcluding": "1.4.22",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hikvision:ds-k1t804a:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5BDBE9E6-0A47-4D1E-824D-27CDD64EC9C6",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hikvision:ds-k1t804b_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "55487C7C-A732-4572-8305-A5CEB4ABCE4F",
"versionEndExcluding": "1.4.23",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hikvision:ds-k1t804b:-:*:*:*:*:*:*:*",
"matchCriteriaId": "84AEF3D6-96C3-48DB-84F4-91B15DA10AC9",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hikvision:ds-k1t201a_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "1C291558-9518-45FD-B335-4C4B0B809689",
"versionEndExcluding": "1.3.65",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hikvision:ds-k1t201a:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F9AF2454-7567-404C-9034-B68D83AFE1A3",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hikvision:ds-k1t105a_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "2BE71E15-75EB-45E2-8132-6EC4328119D8",
"versionEndExcluding": "1.3.65",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hikvision:ds-k1t105a:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E016D61D-1B25-4771-A309-AA644A26C877",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hikvision:ds-k1t342_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "EF448E78-1DD8-414D-8AE3-72A259FD3FAE",
"versionEndExcluding": "4.48.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hikvision:ds-k1t342:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8A163CD9-37C7-4575-A790-982E2406A01F",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hikvision:ds-k1t343_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "BA984C23-17E5-43B4-A9DA-F5BD4B007478",
"versionEndExcluding": "4.48.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hikvision:ds-k1t343:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AB3816C5-A0F2-47B1-9B40-A47FE1FBE053",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hikvision:ds-k1t344_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "0D6FF3E3-D6AB-4C69-8212-38397FB5C12B",
"versionEndExcluding": "4.48.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hikvision:ds-k1t344:-:*:*:*:*:*:*:*",
"matchCriteriaId": "52FE66AC-596D-494C-9C29-6919205ED5AC",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hikvision:ds-k1t6qt-f72_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "F6ABABF4-81D5-452B-8CC4-924335CF31F5",
"versionEndExcluding": "4.48.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hikvision:ds-k1t6qt-f72:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4B48535B-1471-4B1C-AF8C-2F5116225F8A",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hikvision:ds-k1t6qt-f43_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "E83C60D7-B7FB-461E-B7E2-3EB2227C4F4E",
"versionEndExcluding": "4.48.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hikvision:ds-k1t6qt-f43:-:*:*:*:*:*:*:*",
"matchCriteriaId": "059E5A01-4633-40F9-9AA3-8F3019903835",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hikvision:ds-k1t8005_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "557CAE23-96F3-4A21-9E0D-532E54CED359",
"versionEndExcluding": "3.25.40",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hikvision:ds-k1t8005:-:*:*:*:*:*:*:*",
"matchCriteriaId": "696ED009-67B1-4D45-9AFD-BC68697A9D7A",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hikvision:ds-k1t808_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "8D81291F-D1C6-471D-B313-BE682B1D7C2B",
"versionEndExcluding": "3.25.40",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hikvision:ds-k1t808:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9B365695-11F0-4D2E-B7DD-EE6D78D95061",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hikvision:ds-k1t320_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "C08D0733-7443-442D-9625-98DF738DE421",
"versionEndExcluding": "3.9.40",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hikvision:ds-k1t320:-:*:*:*:*:*:*:*",
"matchCriteriaId": "DFB55E0E-26EF-4A02-A875-0CDFC0E84494",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hikvision:ds-k1t321_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "6E472A20-599F-4569-93CA-D0589A91C094",
"versionEndExcluding": "3.9.40",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hikvision:ds-k1t321:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0A726724-CA0C-4DF4-8766-DBC24CFC6298",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hikvision:ds-k1t323_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "72A9D0A0-440A-4478-9DFF-938A78949A22",
"versionEndExcluding": "4.23.41",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hikvision:ds-k1t323:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4F1E2E44-BE3B-4BBA-8F99-7F825CFCCB04",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hikvision:ds-k1t510_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "56334187-6AE7-4A35-8597-6D3F84C2595B",
"versionEndExcluding": "4.23.41",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hikvision:ds-k1t510:-:*:*:*:*:*:*:*",
"matchCriteriaId": "29A292CB-0B20-4157-A1D6-B56AAA7796C1",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hikvision:ds-k5033_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "133AA7CA-18AD-4D11-B2D7-222D8983FBEC",
"versionEndExcluding": "4.37.40",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hikvision:ds-k5033:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5949CA0B-49F3-4031-A636-3B634246E3AB",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "There is a Stack overflow Vulnerability in the device Search and Discovery feature of Hikvision Access Control Products. If exploited, an attacker on the same local area network (LAN) could cause the device to malfunction by sending specially crafted packets to an unpatched device."
}
],
"id": "CVE-2025-66176",
"lastModified": "2026-01-22T20:35:56.067",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9,
"source": "hsrc@hikvision.com",
"type": "Secondary"
}
]
},
"published": "2026-01-13T03:16:01.097",
"references": [
{
"source": "hsrc@hikvision.com",
"tags": [
"Vendor Advisory"
],
"url": "https://www.hikvision.com/en/support/cybersecurity/security-advisory/buffer-overflow-vulnerabilities-in-some-hikvision-products/"
}
],
"sourceIdentifier": "hsrc@hikvision.com",
"vulnStatus": "Analyzed",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-121"
}
],
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…