CVE-2026-32683 | THREATINT

Description

Some EZVIZ products utilize older versions of cloud feature modules with legacy API interfaces, which pose a data transmission risk. Attackers can exploit this by eavesdropping on network requests to obtain data.Users are advised to upgrade the app to the latest version and enable the video encryption feature.

PUBLISHED Reserved 2026-03-13 | Published 2026-05-09 | Updated 2026-05-09 | Assigner hikvision

MEDIUM: 5.3CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Product status

iOS: Versions prior to 7.3.1

affected

Android: Versions prior to 7.3.0.0210

affected

Credits

Cisco Talos finder

References

www.ezviz.com/...-center/security/security-notice/2026.05.08

www.hikvision.com/...cloud-function-modules-of-some-hikvisi/

cve.org (CVE-2026-32683)

nvd.nist.gov (CVE-2026-32683)

Download JSON