CVE-2024-29947

Summary

There is a NULL dereference pointer vulnerability in some Hikvision NVRs. Due to an insufficient validation of a parameter in a message, an attacker may send specially crafted messages to an affected product, causing a process abnormality.

Affected Software

VendorProductVersion RangeStatus
HikvisionDS-7604NI-K1 / 4P(B)V4.30.096build221220 and the versions prior to itaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References