Some access control products are vulnerable to a session hijacking attack because the product does not update the session ID after a user successfully logs in. To exploit the vulnerability, attackers have to request the session ID at the same time as a valid user logs in, and gain device operation permissions by forging the IP and session ID of an authenticated user.

Metrics

No CVSS v4.0

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Affected Vendors & Products

Vendors Products
Hikvision
  • Ds-k1t320efwx
  • Ds-k1t320efwx Firmware
  • Ds-k1t320efx
  • Ds-k1t320efx Firmware
  • Ds-k1t320ewx
  • Ds-k1t320ewx Firmware
  • Ds-k1t320ex
  • Ds-k1t320ex Firmware
  • Ds-k1t320mfwx
  • Ds-k1t320mfwx Firmware
  • Ds-k1t320mfx
  • Ds-k1t320mfx Firmware
  • Ds-k1t320mwx
  • Ds-k1t320mwx Firmware
  • Ds-k1t320mx
  • Ds-k1t320mx Firmware
  • Ds-k1t341am
  • Ds-k1t341am Firmware
  • Ds-k1t341amf
  • Ds-k1t341amf Firmware
  • Ds-k1t341cm
  • Ds-k1t341cm Firmware
  • Ds-k1t343ewx
  • Ds-k1t343ewx Firmware
  • Ds-k1t343ex
  • Ds-k1t343ex Firmware
  • Ds-k1t343mwx
  • Ds-k1t343mwx Firmware
  • Ds-k1t343mx
  • Ds-k1t343mx Firmware
  • Ds-k1t671
  • Ds-k1t671 Firmware
  • Ds-k1t671m
  • Ds-k1t671m Firmware
  • Ds-k1t671mf
  • Ds-k1t671mf Firmware
  • Ds-k1t671t
  • Ds-k1t671t Firmware
  • Ds-k1t671tm
  • Ds-k1t671tm-3xf
  • Ds-k1t671tm-3xf Firmware
  • Ds-k1t671tm Firmware
  • Ds-k1t671tmf
  • Ds-k1t671tmf Firmware
  • Ds-k1t671tmfw
  • Ds-k1t671tmfw Firmware
  • Ds-k1t671tmw
  • Ds-k1t671tmw Firmware
  • Ds-k1t804af
  • Ds-k1t804af Firmware
  • Ds-k1t804amf
  • Ds-k1t804amf Firmware

Configuration 1 [-]

AND
cpe:2.3:h:hikvision:ds-k1t320efwx:-:*:*:*:*:*:*:*
cpe:2.3:o:hikvision:ds-k1t320efwx_firmware:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND
cpe:2.3:h:hikvision:ds-k1t320efx:-:*:*:*:*:*:*:*
cpe:2.3:o:hikvision:ds-k1t320efx_firmware:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND
cpe:2.3:h:hikvision:ds-k1t320ewx:-:*:*:*:*:*:*:*
cpe:2.3:o:hikvision:ds-k1t320ewx_firmware:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND
cpe:2.3:h:hikvision:ds-k1t320ex:-:*:*:*:*:*:*:*
cpe:2.3:o:hikvision:ds-k1t320ex_firmware:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND
cpe:2.3:h:hikvision:ds-k1t320mfwx:-:*:*:*:*:*:*:*
cpe:2.3:o:hikvision:ds-k1t320mfwx_firmware:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND
cpe:2.3:h:hikvision:ds-k1t320mfx:-:*:*:*:*:*:*:*
cpe:2.3:o:hikvision:ds-k1t320mfx_firmware:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND
cpe:2.3:h:hikvision:ds-k1t320mwx:-:*:*:*:*:*:*:*
cpe:2.3:o:hikvision:ds-k1t320mwx_firmware:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND
cpe:2.3:h:hikvision:ds-k1t320mx:-:*:*:*:*:*:*:*
cpe:2.3:o:hikvision:ds-k1t320mx_firmware:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND
cpe:2.3:o:hikvision:ds-k1t341am_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:hikvision:ds-k1t341am:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND
cpe:2.3:o:hikvision:ds-k1t341amf_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:hikvision:ds-k1t341amf:-:*:*:*:*:*:*:*

Configuration 11 [-]

AND
cpe:2.3:o:hikvision:ds-k1t341cm_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:hikvision:ds-k1t341cm:-:*:*:*:*:*:*:*

Configuration 12 [-]

AND
cpe:2.3:o:hikvision:ds-k1t343ewx_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:hikvision:ds-k1t343ewx:-:*:*:*:*:*:*:*

Configuration 13 [-]

AND
cpe:2.3:o:hikvision:ds-k1t343ex_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:hikvision:ds-k1t343ex:-:*:*:*:*:*:*:*

Configuration 14 [-]

AND
cpe:2.3:o:hikvision:ds-k1t343mwx_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:hikvision:ds-k1t343mwx:-:*:*:*:*:*:*:*

Configuration 15 [-]

AND
cpe:2.3:o:hikvision:ds-k1t343mx_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:hikvision:ds-k1t343mx:-:*:*:*:*:*:*:*

Configuration 16 [-]

AND
cpe:2.3:o:hikvision:ds-k1t671_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:hikvision:ds-k1t671:-:*:*:*:*:*:*:*

Configuration 17 [-]

AND
cpe:2.3:o:hikvision:ds-k1t671m_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:hikvision:ds-k1t671m:-:*:*:*:*:*:*:*

Configuration 18 [-]

AND
cpe:2.3:o:hikvision:ds-k1t671mf_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:hikvision:ds-k1t671mf:-:*:*:*:*:*:*:*

Configuration 19 [-]

AND
cpe:2.3:o:hikvision:ds-k1t671t_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:hikvision:ds-k1t671t:-:*:*:*:*:*:*:*

Configuration 20 [-]

AND
cpe:2.3:o:hikvision:ds-k1t671tm_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:hikvision:ds-k1t671tm:-:*:*:*:*:*:*:*

Configuration 21 [-]

AND
cpe:2.3:o:hikvision:ds-k1t671tm-3xf_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:hikvision:ds-k1t671tm-3xf:-:*:*:*:*:*:*:*

Configuration 22 [-]

AND
cpe:2.3:h:hikvision:ds-k1t671tmf:-:*:*:*:*:*:*:*
cpe:2.3:o:hikvision:ds-k1t671tmf_firmware:-:*:*:*:*:*:*:*

Configuration 23 [-]

AND
cpe:2.3:o:hikvision:ds-k1t671tmfw_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:hikvision:ds-k1t671tmfw:-:*:*:*:*:*:*:*

Configuration 24 [-]

AND
cpe:2.3:o:hikvision:ds-k1t671tmw_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:hikvision:ds-k1t671tmw:-:*:*:*:*:*:*:*

Configuration 25 [-]

AND
cpe:2.3:o:hikvision:ds-k1t804af_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:hikvision:ds-k1t804af:-:*:*:*:*:*:*:*

Configuration 26 [-]

AND
cpe:2.3:o:hikvision:ds-k1t804amf_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:hikvision:ds-k1t804amf:-:*:*:*:*:*:*:*

No data.

References
Link Providers
http://packetstormsecurity.com/files/174506/Hikvision-Access-Control-Session-Hijacking.html cve-icon cve-icon
https://www.hikvision.com/en/support/cybersecurity/security-advisory/security-vulnerability-in-some-hikvision-access-control-intercom/ cve-icon cve-icon
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: hikvision

Published: 2023-06-15T00:00:00

Updated: 2024-08-02T13:51:38.488Z

Reserved: 2023-03-23T00:00:00

Link: CVE-2023-28809

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-06-15T19:15:10.537

Modified: 2023-09-05T17:15:08.280

Link: CVE-2023-28809

cve-icon Redhat

No data.