CVE-2022-28171

high-risk

Published 2022-06-27

The web module in some Hikvision Hybrid SAN/Cluster Storage products have the following security vulnerability. Due to the insufficient input validation, attacker can exploit the vulnerability to execute restricted commands by sending messages with malicious commands to the affected device.

Do I need to act?

84.1% chance of exploitation in next 30 days

EPSS score — higher than 16% of all CVEs

Not on CISA KEV list

No confirmed active exploitation reported to CISA

1 public exploit available

51607

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 7.5/10 High

NETWORK / LOW complexity

Affected Products (11)

Ds-A71024 Firmware

Ds-A71048 Firmware

Ds-A71072R Firmware

Ds-A80624S Firmware

Ds-A81016S Firmware

Ds-A72024 Firmware

Ds-A72072R Firmware

Ds-A80316S Firmware

Ds-A82024D Firmware

Ds-A71048R-Cvs Firmware

Ds-A72048R-Cvs Firmware

Affected Vendors

Hikvision

References (6)

Third Party Advisory http://packetstormsecurity.com/files/170818/Hikvision-Remote-Code-Execution-XSS-...

Exploit http://packetstormsecurity.com/files/173653/Hikvision-Hybrid-SAN-Ds-a71024-SQL-I...

Vendor Advisory https://www.hikvision.com/en/support/cybersecurity/security-advisory/security-vu...

Third Party Advisory http://packetstormsecurity.com/files/170818/Hikvision-Remote-Code-Execution-XSS-...

Exploit http://packetstormsecurity.com/files/173653/Hikvision-Hybrid-SAN-Ds-a71024-SQL-I...

Vendor Advisory https://www.hikvision.com/en/support/cybersecurity/security-advisory/security-vu...

/ 100

high-risk

Severity 26/34 · High

Exploitability 20/34 · Moderate

Exposure 16/34 · Moderate