logo
Vulnerability feed
CONTRIBUTE

Vulnerability

warn

CVE-2021-36260

Reference to the description:

https://nvd.nist.gov/vuln/detail/CVE-2021-36260

Description:
A command injection vulnerability in the web server of some Hikvision product. Due to the insufficient input validation, attacker can exploit the vulnerability to launch a command injection attack by sending some messages with malicious commands.
Last updated date:
02/06/2025

Reports

alt

ACTIVELY EXPLOITED

Type:
exploitation
Confidence:
HIGH
Date of publishing:
12/09/2021
Reference url to background

https://securityaffairs.co/wordpress/125409/malware/moobot-botnet-hikvision.html

Type:
exploitation
Confidence:
HIGH
Date of publishing:
01/10/2022
Type:
exploit
Confidence:
HIGH
Date of publishing:
10/18/2021
Type:
exploit
Confidence:
HIGH
Date of publishing:
10/25/2021
Type:
exploit
Confidence:
HIGH
Date of publishing:
10/27/2021
Type:
exploit
Confidence:
HIGH
Date of publishing:
11/03/2021
Type:
exploit
Confidence:
HIGH
Date of publishing:
11/05/2021
Type:
exploit
Confidence:
HIGH
Date of publishing:
12/13/2021
Reference url to background

https://github.com/tuntin9x/CheckHKRCE

Type:
exploit
Confidence:
HIGH
Date of publishing:
02/25/2022
Type:
exploit
Confidence:
HIGH
Date of publishing:
04/05/2022
Type:
exploit
Confidence:
HIGH
Date of publishing:
08/03/2022
Reference url to background

https://github.com/Cuerz/CVE-2021-36260

Type:
exploit
Confidence:
HIGH
Date of publishing:
10/27/2022
Type:
exploit
Confidence:
HIGH
Date of publishing:
07/18/2023
Vulnerability FeedContributorsAboutBlog

@inTheWild

©2025

Privacy Policy