CVE-2026-55975

Severity CVSS v4.0:
HIGH
Type:
CWE-78 OS Command Injections
Publication date:
26/06/2026
Last modified:
29/06/2026

Description

A vulnerability exists in H.View IP cameras that could allow an authenticated user to supply unsanitized XML fields to the device's certificate generation interface, which are incorporated into a backend certificate creation command without proper input validation. This may allow for command execution with elevated privileges during certificate generation.