CVE-2017-7921

10CRITICAL

Key Information

Vendor
Hikvision
Status
Hikvision Cameras
Vendor
CVE Published:
6 May 2017

Badges

👾 Exploit Exists🟡 Public PoC

Summary

An Improper Authentication issue was discovered in Hikvision DS-2CD2xx2F-I Series V5.2.0 build 140721 to V5.4.0 build 160530, DS-2CD2xx0F-I Series V5.2.0 build 140721 to V5.4.0 Build 160401, DS-2CD2xx2FWD Series V5.3.1 build 150410 to V5.4.4 Build 161125, DS-2CD4x2xFWD Series V5.2.0 build 140721 to V5.4.0 Build 160414, DS-2CD4xx5 Series V5.2.0 build 140721 to V5.4.0 Build 160421, DS-2DFx Series V5.2.0 build 140805 to V5.4.5 Build 160928, and DS-2CD63xx Series V5.0.9 build 140305 to V5.3.5 Build 160106 devices. The improper authentication vulnerability occurs when an application does not adequately or correctly authenticate users. This may allow a malicious user to escalate his or her privileges on the system and gain access to sensitive information.

Affected Version(s)

Hikvision Cameras = Hikvision Cameras

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

hikvision_CVE-2017-7921_auth_bypass_config_decryptor
Created by chrisjd20

CVE-2017-7921-EXP
Created by JrDw0

CVE-2017-7921
Created by BurnyMcDull

References

https://ics-cert.us-cert.gov/advisories/ICSA-17-124-01
x_refsource_MISC
http://www.securityfocus.com/bid/98313
vdb-entryx_refsource_BID
https://ghostbin.com/paste/q2vq2
x_refsource_MISC

EPSS Score

31% chance of being exploited in the next 30 days.

CVSS V3.1

Score:
10
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Changed

Timeline

  • 🟡

    Public PoC available

  • 👾

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

Collectors

NVD DatabaseMitre Database11 Proof of Concept(s)
.