Hichip Shenzhen Hichip Vision Technology Firmware vulnerabilities
4 known vulnerabilities affecting hichip/shenzhen_hichip_vision_technology_firmware.
Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH2
Vulnerabilities
Page 1 of 1
CVE-2020-9527P2CRITICALCVSS 9.8fixed in 2020-06-292020-08-10
CVE-2020-9527 [CRITICAL] CWE-120 CVE-2020-9527: Firmware developed by Shenzhen Hichip Vision Technology (V6 through V20, after 2018-08-09 through 20
Firmware developed by Shenzhen Hichip Vision Technology (V6 through V20, after 2018-08-09 through 2020), as used by many different vendors in millions of Internet of Things devices, suffers from buffer overflow vulnerability that allows unauthenticated remote attackers to execute arbitrary code via the peer-to-peer (P2P) service. This affects produc
nvd
CVE-2020-9529P3CRITICALCVSS 9.8fixed in 2020-06-292020-08-10
CVE-2020-9529 [CRITICAL] CVE-2020-9529: Firmware developed by Shenzhen Hichip Vision Technology (V6 through V20), as used by many different
Firmware developed by Shenzhen Hichip Vision Technology (V6 through V20), as used by many different vendors in millions of Internet of Things devices, suffers from a privilege escalation vulnerability that allows attackers on the local network to reset the device's administrator password. This affects products marketed under the following brand names: Accfly
nvd
CVE-2020-9528P3HIGHCVSS 7.5fixed in 2020-06-292020-08-10
CVE-2020-9528 [HIGH] CWE-327 CVE-2020-9528: Firmware developed by Shenzhen Hichip Vision Technology (V6 through V20), as used by many different
Firmware developed by Shenzhen Hichip Vision Technology (V6 through V20), as used by many different vendors in millions of Internet of Things devices, suffers from cryptographic issues that allow remote attackers to access user session data, as demonstrated by eavesdropping on user video/audio streams, capturing credentials, and compromising devices. Thi
nvd
CVE-2022-23382P3HIGHCVSS 8.1v11.4.8.1.1-201709262023-09-11
CVE-2022-23382 [HIGH] CWE-400 CVE-2022-23382: Shenzhen Hichip Vision Technology IP Camera Firmware V11.4.8.1.1-20170926 has a denial of service vu
Shenzhen Hichip Vision Technology IP Camera Firmware V11.4.8.1.1-20170926 has a denial of service vulnerability through sending a crafted multicast message in a local network.
nvd