Description
A vulnerability exists in H.View IP cameras that could allow an authenticated user to supply unsanitized XML fields to the device's certificate generation interface, which are incorporated into a backend certificate creation command without proper input validation. This may allow for command execution with elevated privileges during certificate generation.
Published: 2026-06-26
Score: 8.6 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability lies in the H.View IP camera’s certificate generation interface, which accepts unsanitized XML fields that are directly embedded into a backend OS command. Because the device executes these commands with elevated privileges, a malicious authenticated user can inject arbitrary commands, turning the camera into a target for command execution. This is a classic OS command injection flaw (CWE-78).

Affected Systems

No specific firmware or software version numbers are supplied in the CVE data, so any firmware containing the described certificate creation mechanism is potentially vulnerable.

Risk and Exploitability

The CVSS score of 8.6 classifies the flaw as high‑severity. The EPSS score is not available and the flaw is not listed in CISA's KEV catalog, indicating that while exploitation is feasible, there is currently no evidence of active widespread attacks. The vulnerability requires authentication to the camera; therefore, the attack vector is likely local or remote network access to an authenticated user. Once authenticated, an attacker can inject shell commands during certificate creation, escalating privileges on the device.

Generated by OpenCVE AI on June 27, 2026 at 00:20 UTC.

Remediation

Vendor Workaround

H.View did not respond to CISA's request to coordinate. Users are encouraged to reach out to H.View for support. https://hviewsmart.com/pages/contact-us  https://hviewsmart.com/pages/contact-us


OpenCVE Recommended Actions

  • Contact H.View for support and request a firmware update or mitigation.
  • Restrict local authentication to trusted users and enforce strong password policies.
  • Disable or block the certificate generation interface if it is not required, or limit its access to a secure management channel.
  • Reduce network exposure by placing cameras behind firewalls and restricting allowed IP ranges.

Generated by OpenCVE AI on June 27, 2026 at 00:20 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 29 Jun 2026 20:45:00 +0000

Type Values Removed Values Added
First Time appeared H.view
H.view hv-500s6 Ip Camera
Vendors & Products H.view
H.view hv-500s6 Ip Camera

Mon, 29 Jun 2026 14:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Fri, 26 Jun 2026 23:15:00 +0000

Type Values Removed Values Added
Description A vulnerability exists in H.View IP cameras that could allow an authenticated user to supply unsanitized XML fields to the device's certificate generation interface, which are incorporated into a backend certificate creation command without proper input validation. This may allow for command execution with elevated privileges during certificate generation.
Title H.VIEW HV-500S6 IP Camera OS Command Injection
Weaknesses CWE-78
References
Metrics cvssV3_1

{'score': 7.2, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H'}

cvssV4_0

{'score': 8.6, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}


Subscriptions

H.view Hv-500s6 Ip Camera
cve-icon MITRE

Status: PUBLISHED

Assigner: icscert

Published:

Updated: 2026-06-29T13:56:08.065Z

Reserved: 2026-06-22T20:13:36.497Z

Link: CVE-2026-55975

cve-icon Vulnrichment

Updated: 2026-06-29T13:56:01.507Z

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-29T20:06:03Z

Weaknesses
  • CWE-78

    Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')