CVE-2026-32684

LOW

Hikvision Hik-Connect APP - Info Disclosure

Title source: llm

Description

The application does not impose strict enough restrictions on directory access permissions, posing a risk that other malicious applications could obtain sensitive information.

References (1)

Core 1

Core References

https://pinfo.hikvision.com/hkwsen/unzip/20260511114030_14652_doc/GUID-A47A8570-631E-4F62-BCEE-37E9F2983DD7.html

Scores

CVSS v3 2.9

EPSS 0.0004

EPSS Percentile 12.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

Status published

Products (2)

Hikvision/Hik-Connect APP V6.10.x

Hikvision/Hik-Connect APP V6.12.0

Published May 12, 2026

Tracked Since May 12, 2026