CVE-2025-66176
Published: Jan 13, 2026
Modified: Mar 18, 2026
CVSS v3.1
8.8
Description
There is a Stack overflow Vulnerability in the device Search and Discovery feature of Hikvision Access Control Products. If exploited, an attacker on the same local area network (LAN) could cause the device to malfunction by sending specially crafted packets to an unpatched device.
| Vendor | Product | Versions |
|---|---|---|
Hikvision | DS-K1T331 | affected Versions below V3.7.80 |
Hikvision | DS-K1T341A/K1T341B | affected Versions below V3.7.80 |
Hikvision | DS-K1T671/K5671 | affected Versions below V3.7.80 |
Hikvision | DS-K1T672 | affected Versions below V3.7.80 |
Hikvision | DS-K1T680 | affected Versions below V3.7.80 |
Hikvision | DS-K1T981 | affected Versions below V3.7.80 |
Hikvision | DS-K1T341C | affected Versions below V3.3.180 |
Hikvision | DS-K1T670/K1T673 | affected Versions below V4.48.0 |
Hikvision | DS-K1T8003 | affected Versions below V1.4.21 |
Hikvision | DS-K1T804A | affected Versions below V1.4.22 |
Hikvision | DS-K1T8003/8004 | affected Versions below V1.4.21 |
Hikvision | DS-K1T804A | affected Versions below V1.4.22 |
Hikvision | DS-K1T804B | affected Versions below V1.4.23 |
Hikvision | DS-K1T201A/K1T105A | affected Versions below V1.3.65 |
Hikvision | DS-K1T342/K1T343/K1T344/DS-K1T6QT-F72/F43 | affected Versions below V4.48.0 |
Hikvision | DS-K1T8005/DS-K1T808 | affected Versions below V3.25.40 |
Hikvision | DS-K1T320/DS-K1T321 | affected Versions below V3.9.40 |
Hikvision | DS-K1T323/DS-K1T510 | affected Versions below V4.23.41 |
Hikvision | DS-K5033 | affected Versions below V4.37.40 |
CVSS v3.1 Details
CVSS v3.1 Vector
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now