What is the hikvision CNA?
hikvision is a CVE Numbering Authority (CNA) — an organization authorized to assign CVE IDs to vulnerabilities in its scope. It has published 35 CVE records since 2018.
How many CVEs has hikvision published?
hikvision has published 35 CVE records, including 23 in the last two years.
What is hikvision's CVE data quality grade?
RadicalNotion.AI grades hikvision's CVE data quality as B, with an overall completeness score of 88.6%. This reflects how consistently its CVE records include vendor (97.1%), product (97.1%), CVSS (91.4%), and CWE (68.6%) information.
What products does hikvision publish CVEs for?
hikvision most frequently publishes CVEs for HikCentral Professional, HS-AFS-S1H1, ds-a71048r-cvs, DS-A71024/48R-CVS,DS-A72024/48R-CVS, ds-a71048.
Which vendors does hikvision cover?
hikvision publishes CVEs across 3 distinct vendors, most often Hikvision, HIKSEMI, EZVIZ.
Is hikvision actively publishing CVEs?
hikvision is currently active, based on 23 CVEs in the last two years.
What is the average severity of hikvision's CVEs?
The average CVSS base score across hikvision's scored CVEs is 6.7.
How many critical CVEs has hikvision published?
hikvision has published 6 critical-severity CVEs and 14 high-severity CVEs.
Are any of hikvision's CVEs in CISA's Known Exploited Vulnerabilities catalog?
Yes. 1 of hikvision's CVEs are listed in CISA's Known Exploited Vulnerabilities (KEV) catalog, meaning they are confirmed to be exploited in the wild.
What are the most common weakness types in hikvision's CVEs?
hikvision's CVEs most often map to these CWE weakness types: CWE-284 (Improper Access Control), CWE-78 (Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')), CWE-121 (Stack-based Buffer Overflow), CWE-77 (Improper Neutralization of Special Elements used in a Command ('Command Injection')).
How does hikvision rank among CNAs?
By total CVE volume, hikvision ranks #205 of 370 CNAs, and it reports more complete CVE records than 36% of all CNAs.
