CVE-2021-22681

CISA has added two critical 9.8-severity vulnerabilities — CVE-2017-7921 in Hikvision cameras and CVE-2021-22681 in Rockwell Automation — to its Known Exploited Vulnerabilities catalog. Federal agencies must patch by March 26, 2026.

Severity

critical

CVSS Score

9.8 / 10

Published

Mar 7, 2026

Affected Products

›Hikvision IP cameras and DVRs (CVE-2017-7921)
›Rockwell Automation Studio 5000 Logix Designer
›Rockwell Automation RSLogix 5000
›Rockwell Automation Logix Controllers (CVE-2021-22681)

Full Analysis

CISA Flags Hikvision and Rockwell Automation CVSS 9.8 Flaws as Actively Exploited — Patch by March 26

Deep-dive: technical breakdown, real-world impact, complete remediation steps, and expert context.

Read the full report →

← All threat reports All articles