Michael Budalich

**Name of the Vulnerable Software and Affected Versions** Hikvision iVMS-4200 versions prior to 2.6.2.7 **Description** The issue allows local users to generate password-recovery codes, potentially leading to unauthorized access. **Recommendations** For versions prior to 2.6.2.7, update to version 2.6.2.7 or later to resolve the issue.