Security Notice - Statement on Insecure Cookie Handling Vulnerability in hik-connect.com

Security Notice - Statement on Insecure Cookie Handling Vulnerability in hik-connect.com

SN No: HSRC-201804-09

HSRC (Centro de respuesta de seguridad de Hikvision):

Initial Release Date: 2018-04-24

On April 23, 2018, HSRC (Hikvision Security Response Center) received the report of "Insecure Cookie Handling" vulnerability in "hik-connect.com" from Vangelis Stykas and George Lavdanis.

HSRC has immediately checked all cloud service platforms, confirming that only "hik-connect.com" was affected. All repairs have been completed by 2 p.m. on April 24.HSRC is not aware of any public or malicious use launch to attack through the vulnerability described in this advisory.

This vulnerability was reported to HSRC by Vangelis Stykas & George Lavdanis. HSRC would like to thank Vangelis Stykas & George Lavdanis for working with us and coordinating vulnerability disclosure to protect our customers.

Contáctenos.

For security problems about Hikvision products and solutions, please contact Hikvision Security Response Center at hsrc@hikvision.com.  

Hikvision.com/es-la/ utiliza cookies estrictamente necesarias y tecnologías relacionadas para permitir que el sitio web funcione. Con su consentimiento, también nos gustaría utilizar cookies para observar y analizar los niveles de tráfico y otras métricas / mostrarle publicidad dirigida / mostrarle publicidad de acuerdo con su ubicación / adaptar el contenido de nuestro sitio web. Para obtener más información sobre las prácticas de cookies, consulte nuestra política de cookies.

Contáctenos
Hik-Partner Pro close
Hik-Partner Pro
Tu herramienta aliada Lee más
Hik-Partner Pro
Scan and download the app
Hik-Partner Pro
Hik-Partner Pro

Get a better browsing experience

You are using a web browser we don’t support. Please try one of the following options to have a better experience of our web content.