CVE-2025-66176

{"id": "CVE-2025-66176", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "hsrc@hikvision.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 2.8}]}, "published": "2026-01-13T03:16:01.097", "references": [{"url": "https://www.hikvision.com/en/support/cybersecurity/security-advisory/buffer-overflow-vulnerabilities-in-some-hikvision-products/", "tags": ["Vendor Advisory"], "source": "hsrc@hikvision.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "description": [{"lang": "en", "value": "CWE-121"}]}], "descriptions": [{"lang": "en", "value": "There is a Stack overflow Vulnerability in the device Search and Discovery feature of Hikvision Access Control Products. If exploited, an attacker on the same local area network (LAN) could cause the device to malfunction by sending specially crafted packets to an unpatched device."}], "lastModified": "2026-01-22T20:35:56.067", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hikvision:ds-k1t331_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3FEF4CC2-2B13-4A80-8C57-68600AE9C93A", "versionEndExcluding": "3.7.80"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hikvision:ds-k1t331:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "9C6570A0-091A-49E4-8B04-650397FBD93D"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hikvision:ds-k1t341a_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0B6CAC82-004C-4919-9234-89004136537D", "versionEndExcluding": "3.7.80"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hikvision:ds-k1t341a:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "595B2854-FCC2-4DC9-9821-7545FE940FAC"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hikvision:ds-k1t341b_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BA1A7F5D-F33C-4F15-8639-30CDCD7C1455", "versionEndExcluding": "3.7.80"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hikvision:ds-k1t341b:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "3A7C6C26-52D1-4E9D-8448-29B78F692448"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hikvision:ds-k1t671_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7841DA8E-1AE6-46F6-BB86-360B8624F85D", "versionEndExcluding": "3.7.80"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hikvision:ds-k1t671:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "4B322AE4-4BE3-46EE-BFFD-730274270D52"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hikvision:ds-k5671_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9362042E-F45C-43E3-9709-3D17DE1E476A", "versionEndExcluding": "3.7.80"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hikvision:ds-k5671:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "33DF42F9-AA7B-4275-A0F5-6CD1C395379F"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hikvision:ds-k1t672_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A68F9962-7C8E-46AF-BFA2-372191D585AA", "versionEndExcluding": "3.7.80"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hikvision:ds-k1t672:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "58E41B4D-6601-4F72-BE90-1A119FFB3A0A"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hikvision:ds-k1t680_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E4F9199C-DEAD-430C-B2A7-FF493DAEB8EA", "versionEndExcluding": "3.7.80"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hikvision:ds-k1t680:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "9166334C-35C0-4220-AF7B-1964E32B4451"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hikvision:ds-k1t981_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AA7CA850-60FF-4A8D-8B48-A0F92CA3C893", "versionEndExcluding": "3.7.80"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hikvision:ds-k1t981:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "FF7DF3E8-F9C0-4475-B67B-DF390F6FCEA2"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hikvision:ds-k1t341c_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D45B0E65-1F34-432B-98F3-4BD668BFDBFB", "versionEndExcluding": "3.3.180"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hikvision:ds-k1t341c:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "592F9F35-4C09-4EF2-BA57-D0A2A1DD9CAD"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hikvision:ds-k1t670_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "938D48C8-CABA-4BA8-AF8C-F3A32E9B5FF5", "versionEndExcluding": "4.48.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hikvision:ds-k1t670:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D4DB9DCF-7203-4A56-8532-55930891BB1C"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hikvision:ds-k1t673_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8D8CA557-266F-415B-8470-BDD7D7082C65", "versionEndExcluding": "4.48.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hikvision:ds-k1t673:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "317F27A1-FA60-4970-B59E-FB02C81E94FE"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hikvision:ds-k1t8003_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "807EF865-6176-4B6B-B054-53371272C007", "versionEndIncluding": "1.4.21"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hikvision:ds-k1t8003:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D63B00A4-6461-49E1-812C-6A4C3134A18F"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hikvision:ds-k1t804a_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "477FD324-96CA-4918-A757-A42AB88F99E7", "versionEndExcluding": "1.4.22"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hikvision:ds-k1t804a:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5BDBE9E6-0A47-4D1E-824D-27CDD64EC9C6"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hikvision:ds-k1t804b_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "55487C7C-A732-4572-8305-A5CEB4ABCE4F", "versionEndExcluding": "1.4.23"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hikvision:ds-k1t804b:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "84AEF3D6-96C3-48DB-84F4-91B15DA10AC9"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hikvision:ds-k1t201a_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1C291558-9518-45FD-B335-4C4B0B809689", "versionEndExcluding": "1.3.65"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hikvision:ds-k1t201a:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F9AF2454-7567-404C-9034-B68D83AFE1A3"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hikvision:ds-k1t105a_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2BE71E15-75EB-45E2-8132-6EC4328119D8", "versionEndExcluding": "1.3.65"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hikvision:ds-k1t105a:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E016D61D-1B25-4771-A309-AA644A26C877"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hikvision:ds-k1t342_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EF448E78-1DD8-414D-8AE3-72A259FD3FAE", "versionEndExcluding": "4.48.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hikvision:ds-k1t342:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "8A163CD9-37C7-4575-A790-982E2406A01F"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hikvision:ds-k1t343_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BA984C23-17E5-43B4-A9DA-F5BD4B007478", "versionEndExcluding": "4.48.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hikvision:ds-k1t343:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "AB3816C5-A0F2-47B1-9B40-A47FE1FBE053"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hikvision:ds-k1t344_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0D6FF3E3-D6AB-4C69-8212-38397FB5C12B", "versionEndExcluding": "4.48.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hikvision:ds-k1t344:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "52FE66AC-596D-494C-9C29-6919205ED5AC"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hikvision:ds-k1t6qt-f72_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F6ABABF4-81D5-452B-8CC4-924335CF31F5", "versionEndExcluding": "4.48.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hikvision:ds-k1t6qt-f72:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "4B48535B-1471-4B1C-AF8C-2F5116225F8A"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hikvision:ds-k1t6qt-f43_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E83C60D7-B7FB-461E-B7E2-3EB2227C4F4E", "versionEndExcluding": "4.48.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hikvision:ds-k1t6qt-f43:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "059E5A01-4633-40F9-9AA3-8F3019903835"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hikvision:ds-k1t8005_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "557CAE23-96F3-4A21-9E0D-532E54CED359", "versionEndExcluding": "3.25.40"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hikvision:ds-k1t8005:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "696ED009-67B1-4D45-9AFD-BC68697A9D7A"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hikvision:ds-k1t808_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8D81291F-D1C6-471D-B313-BE682B1D7C2B", "versionEndExcluding": "3.25.40"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hikvision:ds-k1t808:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "9B365695-11F0-4D2E-B7DD-EE6D78D95061"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hikvision:ds-k1t320_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C08D0733-7443-442D-9625-98DF738DE421", "versionEndExcluding": "3.9.40"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hikvision:ds-k1t320:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "DFB55E0E-26EF-4A02-A875-0CDFC0E84494"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hikvision:ds-k1t321_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6E472A20-599F-4569-93CA-D0589A91C094", "versionEndExcluding": "3.9.40"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hikvision:ds-k1t321:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "0A726724-CA0C-4DF4-8766-DBC24CFC6298"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hikvision:ds-k1t323_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "72A9D0A0-440A-4478-9DFF-938A78949A22", "versionEndExcluding": "4.23.41"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hikvision:ds-k1t323:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "4F1E2E44-BE3B-4BBA-8F99-7F825CFCCB04"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hikvision:ds-k1t510_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "56334187-6AE7-4A35-8597-6D3F84C2595B", "versionEndExcluding": "4.23.41"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hikvision:ds-k1t510:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "29A292CB-0B20-4157-A1D6-B56AAA7796C1"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hikvision:ds-k5033_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "133AA7CA-18AD-4D11-B2D7-222D8983FBEC", "versionEndExcluding": "4.37.40"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hikvision:ds-k5033:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5949CA0B-49F3-4031-A636-3B634246E3AB"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "hsrc@hikvision.com"}