CVE-2025-66176HIGH 8.8EPSS p37.9%

CVE-2025-66176CVE-2025-66176

Description

There is a Stack overflow Vulnerability in the device Search and Discovery feature of Hikvision Access Control Products. If exploited, an attacker on the same local area network (LAN) could cause the device to malfunction by sending specially crafted packets to an unpatched device.

Scoring

CVSS 3.18.8 (HIGH)
VectorCVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS0.48% probability of exploitation · percentile 37.9% · 2026-06-19T12:03:05Z
Published2026-01-13
Last modified2026-03-18

Underlying weaknesses· 1

CWE-121

References

  1. https://www.hikvision.com/en/support/cybersecurity/security-advisory/buffer-overflow-vulnerabilities-in-some-hikvision-products/
  2. https://www.talosintelligence.com/vulnerability_reports/TALOS-2025-2281

1

TypeTargetConfidenceTier
WeaknessStack-based Buffer Overflowcwe-1210%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-66177
CVE
Hikvision Multiple Products Improper Authentication Vulnerability
CVE
CVE-2025-41426
CVE
CVE-2025-41687
CVE
CVE-2025-3711
CVE
CVE-2025-3710
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.