← Back

Ds K1t804amf Firmware

ds-k1t804amf_firmware

Vendor: Hikvision • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2023-28810
1Hikvision
37Ds K1t320efwx Firmware
Ds K1t320efx FirmwareDs K1t320ewx Firmware+34 more
Nov 21, 2024
Jun 15, 2023
N/A· v4
4.3 MEDIUM· v3
N/A· v2
Some access control/intercom products have unauthorized modification of device network configuration vulnerabilities. Attackers can modify device network configuration by sending specific data packets to the vulnerable i...Show more
Some access control/intercom products have unauthorized modification of device network configuration vulnerabilities. Attackers can modify device network configuration by sending specific data packets to the vulnerable interface within the same local network.Show less
CVE-2023-28809
1Hikvision
26Ds K1t320efwx Firmware
Ds K1t320efx FirmwareDs K1t320ewx Firmware+23 more
Nov 21, 2024
Jun 15, 2023
N/A· v4
7.5 HIGH· v3
N/A· v2
Some access control products are vulnerable to a session hijacking attack because the product does not update the session ID after a user successfully logs in. To exploit the vulnerability, attackers have to request the...Show more
Some access control products are vulnerable to a session hijacking attack because the product does not update the session ID after a user successfully logs in. To exploit the vulnerability, attackers have to request the session ID at the same time as a valid user logs in, and gain device operation permissions by forging the IP and session ID of an authenticated user.Show less