CVE-2025-66176

moderate-risk

Published 2026-01-13

There is a Stack overflow Vulnerability in the device Search and Discovery feature of Hikvision Access Control Products. If exploited, an attacker on the same local area network (LAN) could cause the device to malfunction by sending specially crafted packets to an unpatched device.

Do I need to act?

0.01% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 8.8/10 High

ADJACENT_NETWORK / LOW complexity

Affected Products (20)

Ds-K1T331 Firmware

Ds-K1T341A Firmware

Ds-K1T341B Firmware

Ds-K1T671 Firmware

Ds-K5671 Firmware

Ds-K1T672 Firmware

Ds-K1T680 Firmware

Ds-K1T981 Firmware

Ds-K1T341C Firmware

Ds-K1T670 Firmware

Ds-K1T673 Firmware

Ds-K1T8003 Firmware

Ds-K1T804A Firmware

Ds-K1T804B Firmware

Ds-K1T201A Firmware

Ds-K1T105A Firmware

Ds-K1T342 Firmware

Ds-K1T343 Firmware

Ds-K1T344 Firmware

Ds-K1T6Qt-F72 Firmware

Affected Vendors

Hikvision

References (2)

Vendor Advisory https://www.hikvision.com/en/support/cybersecurity/security-advisory/buffer-over...

https://www.talosintelligence.com/vulnerability_reports/TALOS-2025-2281

/ 100

moderate-risk

Severity 27/34 · High

Exploitability 0/34 · Minimal

Exposure 22/34 · High