Hikvision AP Flaw Lets Users Run Commands

A newly disclosed vulnerability in multiple Hikvision wireless access point models poses a high-severity risk to enterprise networks. The Hikvision AP flaw, tracked as CVE-2026-0709, allows attackers with valid credentials to execute arbitrary commands due to weak input validation within the WAP firmware. The vulnerability carries a CVSS v3.1 base score of 7.2.

This flaw affects firmware version V1.1.6303 build250812 and earlier on several models including DS-3WAP521-SI and DS-3WAP622G-SI. Hikvision patched the issue with version V1.1.6601 build 251223. Organizations using these devices should update immediately to avoid possible exploitation.

Attackers can send specially crafted packets after authenticating, bypassing security controls and potentially gaining complete device access. Enterprises should reinforce access controls, rotate credentials, and segment networks to reduce exposure.

The hikvision ap flaw highlights the urgent need for strong authentication and timely patching in network infrastructure.

Read the full article at: https://cybersecuritynews.com/hikvision-wireless-access-points-vulnerability/