Description
A vulnerability exists in H.View IP cameras that could allow an authenticated user to supply unsanitized XML fields to the device's certificate generation interface, which are incorporated into a backend certificate creation command without proper input validation. This may allow for command execution with elevated privileges during certificate generation.
Published: 2026-06-26
Score: 8.6 High
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability lies in the H.View IP camera’s certificate generation interface, which accepts unsanitized XML fields that are directly embedded into a backend OS command. Because the device executes these commands with elevated privileges, a malicious authenticated user can inject arbitrary commands, turning the camera into a target for command execution. This is a classic OS command injection flaw (CWE-78).

Affected Systems

No specific firmware or software version numbers are supplied in the CVE data, so any firmware containing the described certificate creation mechanism is potentially vulnerable.

Risk and Exploitability

The CVSS score of 8.6 classifies the flaw as high‑severity. The EPSS score is not available and the flaw is not listed in CISA's KEV catalog, indicating that while exploitation is feasible, there is currently no evidence of active widespread attacks. The vulnerability requires authentication to the camera; therefore, the attack vector is likely local or remote network access to an authenticated user. Once authenticated, an attacker can inject shell commands during certificate creation, escalating privileges on the device.

Generated by OpenCVE AI on June 27, 2026 at 00:20 UTC.

Remediation

Vendor Workaround

H.View did not respond to CISA's request to coordinate. Users are encouraged to reach out to H.View for support. https://hviewsmart.com/pages/contact-us  https://hviewsmart.com/pages/contact-us

OpenCVE Recommended Actions

  • Contact H.View for support and request a firmware update or mitigation.
  • Restrict local authentication to trusted users and enforce strong password policies.
  • Disable or block the certificate generation interface if it is not required, or limit its access to a secure management channel.
  • Reduce network exposure by placing cameras behind firewalls and restricting allowed IP ranges.

Generated by OpenCVE AI on June 27, 2026 at 00:20 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 26 Jun 2026 23:15:00 +0000

Type Values Removed Values Added
Description A vulnerability exists in H.View IP cameras that could allow an authenticated user to supply unsanitized XML fields to the device's certificate generation interface, which are incorporated into a backend certificate creation command without proper input validation. This may allow for command execution with elevated privileges during certificate generation.
Title H.VIEW HV-500S6 IP Camera OS Command Injection
Weaknesses CWE-78
References
Metrics cvssV3_1

{'score': 7.2, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H'}

cvssV4_0

{'score': 8.6, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: icscert

Published:

Updated: 2026-06-26T22:58:52.085Z

Reserved: 2026-06-22T20:13:36.497Z

Link: CVE-2026-55975

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-27T00:30:05Z

Weaknesses
  • CWE-78

    Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')