CVE-2022-28173

CRITICAL

Hikvision DS-3WF0AC-2NT and DS-3WF01C-2N/O Firmware - Unauthenticated Privilege Escalation to Admin via Crafted Messages

Title source: llm

Description

The web server of some Hikvision wireless bridge products have an access control vulnerability which can be used to obtain the admin permission. The attacker can exploit the vulnerability by sending crafted messages to the affected devices.

References (1)

Core 1

Core References

Patch, Vendor Advisory

https://www.hikvision.com/en/support/cybersecurity/security-advisory/access-control-vulnerability-in-some-hikvision-wireless-bridge-products/

Scores

CVSS v3 9.1

EPSS 0.0062

EPSS Percentile 45.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact total

Details

CWE

CWE-284

Status published

Products (2)

hikvision/ds-3wf01c-2n\/o_firmware < 1.0.4

hikvision/ds-3wf0ac-2nt_firmware < 1.1.0

Published Dec 19, 2022

Tracked Since Feb 18, 2026