Vulnerability Details CVE-2015-4408
Buffer overflow on Hikvision NVR DS-76xxNI-E1/2 and DS-77xxxNI-E4 devices before 3.4.0 allows remote authenticated users to cause a denial of service (service interruption) via a crafted HTTP request, aka the ISAPI issue.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 60.2%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 6.8
References
Products affected by CVE-2015-4408
-
cpe:2.3:h:hikvision:ds-7604ni-e1/4p:-
-
cpe:2.3:h:hikvision:ds-7608ni-12/8p:-
-
cpe:2.3:h:hikvision:ds-7608ni-e1/8p:-
-
cpe:2.3:h:hikvision:ds-7616ni-12/16p:-
-
cpe:2.3:h:hikvision:ds-7616ni-e2/16p:-
-
cpe:2.3:h:hikvision:ds-7716ni-14/16p:-
-
cpe:2.3:h:hikvision:ds-7716ni-sp/16:-
-
cpe:2.3:o:hikvision:ds-76xxx_series_firmware:3.3.4
-
cpe:2.3:o:hikvision:ds-77xxx_series_firmware:3.3.4