"Cybersecurity Vulnerability Could Affect Millions of Hikvision Cameras"

On Sunday, video surveillance giant Hikvision posted a security advisory on its website warning customers of a cyber vulnerability that could impact millions of cameras and NVRs deployed globally. Security researchers at Watchful IP discovered the vulnerability back in June.  The researchers stated that the “command injection vulnerability” could allow threat actors to control compromised devices completely.  The vulnerability received a base score of 9.8 out of 10 per the Common Vulnerability Scoring System (CVSS), which Watchful IP called “the highest level of critical vulnerability.”  Although the video surveillance giant has not disclosed how many products are likely impacted, posting only product names and firmware versions, it is estimated that more than 100 million devices could be affected. Hikvision worked with Watchful IP to patch the vulnerability, and the company has patched all vulnerabilities reported to the company in its latest firmware version.

Infosecurity reports: "Cybersecurity Vulnerability Could Affect Millions of Hikvision Cameras"