Vulnerabilities > Hikvision > DS A80624S Firmware > 2.3.8.6

DATE CVE VULNERABILITY TITLE RISK
2023-04-11 CVE-2023-28808 Unspecified vulnerability in Hikvision products
Some Hikvision Hybrid SAN/Cluster Storage products have an access control vulnerability which can be used to obtain the admin permission.
network
low complexity
hikvision
critical
 9.8
9.8
2022-06-27 CVE-2022-28171 Command Injection vulnerability in Hikvision products
The web module in some Hikvision Hybrid SAN/Cluster Storage products have the following security vulnerability.
network
low complexity
hikvision CWE-77
critical
 9.8
9.8
2022-06-27 CVE-2022-28172 Cross-site Scripting vulnerability in Hikvision products
The web module in some Hikvision Hybrid SAN/Cluster Storage products have the following security vulnerability.
network
low complexity
hikvision CWE-79
6.1
6.1