If you are a security researcher and believe that you have found a security vulnerability, we encourage you to report it to us. Please contact us through below form to report a vulnerability or other security concern.
*Due to the sensitive nature of vulnerability information, we strongly suggest you to use our PGP public key
**If you have password reset issue, please contact with support@hikvision.com. This form is only used to deal with security vulnerability report.
Response Time Declaration:
1) Within 1 business day, Hikvison Security Response Center (HSRC) will acknowledge receipt of the vulnerability report and follow up to assess the issue.
2) Within 3 working days, HSRC will deal with the problem and give a conclusion. If necessary, we will communicate with the reporter for confirmation and ask the reporter for assistance.
3) Once the reported issued is identified as vulnerability, HSRC will immediately notify the person who submitted the vulnerability and actively track the process and feedback, and will investigate the vulnerability to ensure that the issues will be resolved for all affected versions and models of the products. The Vulnerability repair time depends on the severity and difficulty of the issue, high-risk vulnerabilities will be fixed within 24 hours, medium-risk vulnerabilities within 3 working days, and low-risk vulnerability within 7 working days. Some vulnerabilities are subject to version release restrictions, and the repair time is determined according to the actual situation. Emergency security notification will be released separately for critical vulnerabilities.