Hikvision Ds-K1T320Xxx vulnerabilities
2 known vulnerabilities affecting hikvision/ds-k1t320xxx.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2023-28809P3HIGHCVSS 7.5≥ V3.5.0_build220706, < V3.5.0_build2207062023-06-15
CVE-2023-28809 [HIGH] CWE-284 CVE-2023-28809: Some access control products are vulnerable to a session hijacking attack because the product does n
Some access control products are vulnerable to a session hijacking attack because the product does not update the session ID after a user successfully logs in. To exploit the vulnerability, attackers have to request the session ID at the same time as a valid user logs in, and gain device operation permissions by forging the IP and session ID of an aut
nvd
CVE-2023-28810P4MEDIUMCVSS 4.3≥ V3.5.0_build220706, < V3.5.0_build2207062023-06-15
CVE-2023-28810 [MEDIUM] CWE-284 CVE-2023-28810: Some access control/intercom products have unauthorized modification of device network configuration
Some access control/intercom products have unauthorized modification of device network configuration vulnerabilities. Attackers can modify device network configuration by sending specific data packets to the vulnerable interface within the same local network.
nvd