GCVE - cpe:2.3:h:hanwhavision:pnm-7000vd:-:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:h:hanwhavision:pnm-7000vd:-:*:*:*:*:*:*:*

part: h version: - update: *

Vendor	Hanwhavision (`79a212ed-d62a-5469-a121-9fe5cc58fd3d`)
Product	Pnm 7000Vd (`9b785cb4-9577-530e-8b91-5ea244764248`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2025-8075`	not_vulnerable	2026-06-03 15:13:42.506845	Improper Input Validation Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems (ICS) and OT/IoT security, has discovered that validation of incoming XML format request messages is inadequate. This vulnerability could allow an attacker to XSS on the user's browser. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer's report for details and workarounds. Published: 2025-12-26T04:31:38.718Z Updated: 2025-12-26T16:01:16.611Z Open on db.gcve.eu Reference links https://www.hanwhavision.com/wp-content/uploads/2025/12/Camera-Vulnerability-ReportCVE-2025-5259852601-8075.pdf	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-52601`	not_vulnerable	2026-06-03 15:03:52.018810	Hardcoding sensitive information Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems (ICS) and OT/IoT security, has discovered a vulnerability in Device Manager that a hardcoded encryption key for sensitive information. An attacker can use key to decrypt sensitive information. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer's report for details and workarounds. Published: 2025-12-26T04:29:25.830Z Updated: 2025-12-26T19:27:44.838Z Open on db.gcve.eu Reference links https://www.hanwhavision.com/wp-content/uploads/2025/12/Camera-Vulnerability-ReportCVE-2025-5259852601-8075.pdf	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-52600`	not_vulnerable	2026-06-03 15:02:00.288610	Improper Input Validation Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems (ICS) and OT/IoT security, has discovered a vulnerability in camera video analytics that Improper input validation. This vulnerability could allow an attacker to execute specific commands on the user's host PC.The manufacturer has released patch firmware for the flaw, please refer to the manufacturer's report for details and workarounds. Published: 2025-12-26T04:20:17.014Z Updated: 2025-12-26T14:50:40.099Z Open on db.gcve.eu Reference links https://www.hanwhavision.com/wp-content/uploads/2025/12/Camera-Vulnerability-ReportCVE-2025-5259852601-8075.pdf	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-52599`	not_vulnerable	2026-06-03 15:02:00.224763	Inadequate account permissions management Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems (ICS) and OT/IoT security, has discovered Inadequate of permission management for camera guest account. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer's report for details and workarounds. Published: 2025-12-26T04:12:37.550Z Updated: 2025-12-26T15:15:17.385Z Open on db.gcve.eu Reference links https://www.hanwhavision.com/wp-content/uploads/2025/12/Camera-Vulnerability-ReportCVE-2025-5259852601-8075.pdf	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-52598`	not_vulnerable	2026-06-03 15:01:59.759023	Insufficient certificate validation Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems (ICS) and OT/IoT security, has found a flaw that camera's client service does not perform certificate validation. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer's report for details and workarounds. Published: 2025-12-26T04:07:19.958Z Updated: 2025-12-26T15:15:22.694Z Open on db.gcve.eu Reference links https://www.hanwhavision.com/wp-content/uploads/2025/12/Camera-Vulnerability-ReportCVE-2025-5259852601-8075.pdf	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-31994`	not_vulnerable	2026-06-03 14:51:56.363373	Details available Certain Hanwha products are vulnerable to Denial of Service (DoS). ck vector is: When an empty UDP packet is sent to the listening service, the service thread results in a non-functional service (DoS) via WS Discovery and Hanwha proprietary discovery services. This affects IP Camera ANE-L7012R 1.41.01 and IP Camera XNV-9082R 2.10.02. Published: 2023-05-23T00:00:00.000Z Updated: 2025-01-17T16:42:07.446Z Open on db.gcve.eu Reference links https://www.hanwhavision.com/wp-content/uploads/2023/04/Camera-Vulnerability-Report.pdf https://hanwhavisionamerica.com/download/50042/	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.