PT-2025-27145 · Hikvision · Hikvision Ds-2Cd1321-I
Published
2025-06-27
·
Updated
2025-06-27
·
CVE-2025-45851
CVSS v2.0
7.8
High
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions:
Hikvision DS-2CD1321-I version 5.7.21 build 230819
Description:
The issue allows attackers to cause a Denial of Service (DoS) via sending a crafted POST request to the endpoint "/ISAPI/Security/challenge".
Recommendations:
For Hikvision DS-2CD1321-I version 5.7.21 build 230819, as a temporary workaround, consider restricting access to the "/ISAPI/Security/challenge" endpoint until a patch is available.
Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Hikvision Ds-2Cd1321-I