CVE-2018-6414

CRITICAL

Hikvision IP Cameras - Buffer Overflow via Crafted Web Server Message

Title source: llm
STIX 2.1

Description

A buffer overflow vulnerability in the web server of some Hikvision IP Cameras allows an attacker to send a specially crafted message to affected devices. Due to the insufficient input validation, successful exploit can corrupt memory and lead to arbitrary code execution or crash the process.

Scores

CVSS v3 9.8
EPSS 0.0253
EPSS Percentile 83.0%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-119
Status published
Products (1)
hikvision/ip_cameras
Published Aug 13, 2018
Tracked Since Feb 18, 2026