Vulnerabilites related to hikvision - ds-2cd4024f-\(a\)
Vulnerability from fkie_nvd
Published
2017-05-06 00:29
Modified
2024-12-27 21:15
Severity ?
Summary
An Improper Authentication issue was discovered in Hikvision DS-2CD2xx2F-I Series V5.2.0 build 140721 to V5.4.0 build 160530, DS-2CD2xx0F-I Series V5.2.0 build 140721 to V5.4.0 Build 160401, DS-2CD2xx2FWD Series V5.3.1 build 150410 to V5.4.4 Build 161125, DS-2CD4x2xFWD Series V5.2.0 build 140721 to V5.4.0 Build 160414, DS-2CD4xx5 Series V5.2.0 build 140721 to V5.4.0 Build 160421, DS-2DFx Series V5.2.0 build 140805 to V5.4.5 Build 160928, and DS-2CD63xx Series V5.0.9 build 140305 to V5.3.5 Build 160106 devices. The improper authentication vulnerability occurs when an application does not adequately or correctly authenticate users. This may allow a malicious user to escalate his or her privileges on the system and gain access to sensitive information.
References
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd2032-i_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "67F14B55-3F24-4C2F-9CBD-8495F1640E1C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd2112-i_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E4EFB5D7-C047-4B2F-A9F8-DDF2943A9355",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd2132-i_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2AAC7FBC-CB10-4A93-94E7-28770C95C0D2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd2212-i5_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1BCA1960-8910-474F-A030-8D16ABF983F8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd2232-i5_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B2A0DE65-CFBA-4A93-BDFF-67EA07E18797",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd2312-i_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "031D3A40-218C-4E40-BB08-55D59B299D55",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd2332-i_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5030CE6D-C9FD-4B51-8FDC-D114E4A495FD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd2412f-i\\(w\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "506744C5-C9C0-43E9-84E3-D028EBA4812E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd2432f-i\\(w\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "970AAE72-240C-4C6C-9B64-8724BB14179E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd2512f-i\\(s\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4B5F2930-FA07-4646-A566-50BF5772B56A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd2532f-i\\(s\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4A51D79A-F96A-4B94-A1E2-29C5269ACC75",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd2612f-i\\(s\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5A05C12A-BD0E-426C-8C6B-BE8D79265C31",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd2632f-i\\(s\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BF2DCFAB-6786-46C6-BB96-94DCAC21DEEB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd2712f-i\\(s\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "47F59EBD-EED0-4AA6-A932-CE2A69A00F06",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd2732f-i\\(s\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1A40C87A-D15E-43F8-B1A7-F8781FD7E648",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd2t32-i3_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1E3156D3-49BD-48E8-A3D6-9755DC76424A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd2t32-i5_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "367B2539-33D9-493C-881E-A87B308EE7C1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd2t32-i8_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5DEB0AB7-5508-4934-9689-B366C82A2555",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4012f-\\(a\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "971300D6-7689-4AEE-A5FA-41B4FC9DE661",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4012f-\\(p\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "682B9E12-DAE6-4E9C-B298-A089B3B06AD0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4012f-\\(w\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "27CF62B8-0F56-4FF1-9F2C-EF08B9486046",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4012fwd-\\(a\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "94AAA544-EA97-4428-BBDF-F4EB3E7C06C3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4012fwd-\\(p\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B8D5C288-D578-4C2D-9C81-05DCDF3128AD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4012fwd-\\(w\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "94E472B6-C7BF-45C4-806E-DD792179B344",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4024f-\\(a\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "07E7465C-A767-4C89-A503-D17A6D99594C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4024f-\\(p\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7D695E95-B05A-433A-8267-ED5E508E2611",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4024f-\\(w\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A566A5DD-3835-45EE-8B0D-23976F1A6ADA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4032fwd-\\(a\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "026E59E0-4EA1-4BEC-8256-29500202A45A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4032fwd-\\(p\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FDEAE9D6-F808-407D-A4ED-190D3EB76922",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4032fwd-\\(w\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C89FB18C-0FCB-45C6-BD46-B49E05F84A62",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4112f-i\\(z\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D1C06838-5D0D-4EA5-AF30-D416ED2CA72B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4112fwd-i\\(z\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EF568306-8596-4C98-B802-A867135DE168",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4124f-i\\(z\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D28421C3-3635-492B-93B0-EB2C7D2FE319",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4132fwd-i\\(z\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2922DD79-113F-4DBA-B66B-F301CD852AB5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4212f-i\\(h\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3D02A599-7269-4C8C-9B0B-EB031CEB3C58",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4212f-i\\(s\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4CD5B437-09AB-4185-BED1-418F24FA12BF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4212f-i\\(z\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5F8389E4-286F-44E8-B734-A56C61381B3B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4212fwd-i\\(h\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "495D790B-D5EC-47FE-9831-D9EC5FF0E370",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4212fwd-i\\(s\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8EC36C0A-F90F-4FCB-973C-A1522BA050BC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4212fwd-i\\(z\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1C0CACC7-C115-42C7-A6A5-87682EDD1F30",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4224f-i\\(h\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "878155AC-BA46-470C-81F9-8735683B0099",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4224f-i\\(s\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A04CAE37-D7CA-47E0-83E6-1DA546A96A41",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4224f-i\\(z\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D59474C9-BD7E-4B6D-AECE-2E6AF0E1AAB7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4232fwd-i\\(h\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E3ACA746-787F-4356-B3B0-6C994C862215",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4232fwd-i\\(s\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D28B3AFC-EEE1-4591-8AB4-3D702691CB83",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4232fwd-i\\(z\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A6AB3880-355D-4E59-A3C1-907A0F1FB190",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4312f-i\\(h\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FE31A803-0305-43DA-B14C-D32ECDA8C8FB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4312f-i\\(s\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6588501E-A1EB-44CF-AB20-8B0041611F53",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4312f-i\\(z\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E30F5534-18CA-41B2-80D5-B4957652D7C6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4324f-i\\(h\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AED0E4DE-4365-47A5-B622-097E9B772273",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4324f-i\\(s\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C8A1924B-EFE8-41B3-9BCC-D3EDA17DEBAA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4324f-i\\(z\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C3A1866F-ED55-4F52-8495-E9DEAEDFB818",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4332fwd-i\\(h\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "ED00F753-1F27-4242-BCA8-E9ECEB55ABA5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4332fwd-i\\(s\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D8153FD2-CB04-4B1D-99B5-E0FA95143651",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4332fwd-i\\(z\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "CD6451D9-F339-469F-BDB7-6B6ED2B23B65",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd6412fwd_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EB6A93A8-2433-4F8F-95AC-1C851373E8B8",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd2032-i:-:*:*:*:*:*:*:*",
"matchCriteriaId": "440EC1B2-A353-4198-ADAA-0D1900C66334",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd2112-i:-:*:*:*:*:*:*:*",
"matchCriteriaId": "70A3B528-F3FC-4509-B27C-6DFFB88E2812",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd2132-i:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2474C609-FCEF-4552-8FFB-8E1134ABBE05",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd2212-i5:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A90A26C5-46EF-471D-9E6B-08B567FA418D",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd2232-i5:-:*:*:*:*:*:*:*",
"matchCriteriaId": "479518FE-D18C-4E0E-8FBF-3C16EA9C09EF",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd2312-i:-:*:*:*:*:*:*:*",
"matchCriteriaId": "54096AF6-18EE-4E6D-AC4A-EAAC9DA0CFBB",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd2332-i:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F19E6984-C1F2-4852-AA9C-83B8D51E8377",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd2412f-i\\(w\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "88FEC246-85D6-42D0-98CD-894ACB716DA2",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd2432f-i\\(w\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "F8EFA20F-20D5-4397-AB57-3CF8D47C9DE1",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd2512f-i\\(s\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "1977B7E0-2770-45E8-9DB9-92DDD562F9E0",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd2532f-i\\(s\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "C1748AC1-D576-481E-A1C1-6CC1B66CC662",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd2612f-i\\(s\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "F8B63F4F-A734-419C-B463-037307C7D0B4",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd2632f-i\\(s\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "E9400E06-3563-49B9-A842-21849B4575B1",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd2712f-i\\(s\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "A14B25FD-DE45-4D2F-94FF-36440B590730",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd2732f-i\\(s\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "91752D15-CE11-4AB9-A277-3994C2392A9E",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd2t32-i3:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5D47AE1D-7857-404A-B5E5-E630C5C5FB19",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd2t32-i5:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B1DBD6D3-0CC7-45AB-80EC-04A81F1D867D",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd2t32-i8:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4FE3401A-62EC-4FE5-B572-86BAC673E6FB",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4012f-\\(a\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "B3ED1E98-001D-4094-9EDE-8EC63F48AC03",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4012f-\\(p\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "C721FD35-5D0A-4B13-92E3-F1865809EB82",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4012f-\\(w\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "43FEE9A8-5F9F-4B77-9CFF-264C8120397D",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4012fwd-\\(a\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "8163EE38-3951-4372-AF98-9B1ECFD75F6D",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4012fwd-\\(p\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "E37A894E-8797-4233-B5E3-B69544081995",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4012fwd-\\(w\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "EB077885-F3F0-4374-8CBD-518465281E72",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4024f-\\(a\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "F44BC3CE-B84A-4677-93A2-FAF1243F7B4A",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4024f-\\(p\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "3A50BB0F-EBE6-4059-B281-21FB6AE895CC",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4024f-\\(w\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "8B2CADD4-D0F1-46B6-9872-0FBC30AB583B",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4032fwd-\\(a\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "315803F3-D65C-43FA-BD9C-F542CF595BE9",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4032fwd-\\(p\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "EAFAE869-B4A3-4649-B7C1-270F3DDA7541",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4032fwd-\\(w\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "682A97CE-52A7-4828-8712-1C553A3643CF",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4112f-i\\(z\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "DF50EB52-8C52-460C-B910-3B01C59B5A44",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4112fwd-i\\(z\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "D8190727-5AD8-4698-98DC-8FD8CD6A3F5E",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4124f-i\\(z\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "2B565D09-2E78-49A9-BD20-0C14E9AF992A",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4132fwd-i\\(z\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "06C3BDBE-8E7D-4340-8079-19CDF52BF4A4",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4212f-i\\(h\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "751E7398-4A35-400F-B796-3AECE33C33F0",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4212f-i\\(s\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "F54C780D-A2A5-4B12-81B3-C2ACA8F04765",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4212f-i\\(z\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "227D1047-CA29-4A1D-9DC3-9F2711A07665",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4212fwd-i\\(h\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "D07ED71B-6878-4411-BB0F-75A55BE9CDA6",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4212fwd-i\\(s\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "7A51D501-8703-4091-968D-397AC6042172",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4212fwd-i\\(z\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "4E7DE24C-1AB2-4B8A-A123-98F9B16470F3",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4224f-i\\(h\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "AAD6E358-832E-4D6E-A7FF-2E2402FB8042",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4224f-i\\(s\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "F3FCB7FD-F5F7-430A-8EEC-796A09ABAF1C",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4224f-i\\(z\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "376A793E-B715-40DB-A452-B8A7665C852C",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4232fwd-i\\(h\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "DAA73C7D-A6CE-4899-BF22-EE8A01124E9D",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4232fwd-i\\(s\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "D59BFCC5-2248-496D-BEF3-5BBF06298C56",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4232fwd-i\\(z\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "932C1F8F-2E03-49D2-97B2-C9802D227458",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4312f-i\\(h\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "9B6EA131-5852-4FBD-BDDB-777CA21C4E66",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4312f-i\\(s\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "1DB8C4E7-5FEB-4234-975B-F40C068EAC1C",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4312f-i\\(z\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "7F90C69B-E195-4A94-B596-46B7B0DB7A25",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4324f-i\\(h\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "B7663F94-4C81-45DA-A560-9DE21A23462C",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4324f-i\\(s\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "51F51E2E-B441-49CB-86E1-C009C5E5353E",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4324f-i\\(z\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "E39824D3-EFD5-49A8-8B3C-3130F83513FB",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4332fwd-i\\(h\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "F7453F60-107B-4244-A14E-F85F05E483EC",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4332fwd-i\\(s\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "8A359284-1983-4311-B5BC-EC7FA51F842C",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4332fwd-i\\(z\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "69936A56-CE23-4C9C-A4E7-AF27BD2ED2FA",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd6412fwd:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F631E8D1-3080-4E5F-9199-03224E01D6CD",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hikvision:ds-2dfx_series_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C1D40D18-52D0-4227-9510-8CB90AE922CD",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hikvision:ds-2dfx_series:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3DC3C1BE-7E94-46C1-9338-96E1F0129121",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd63xx_series_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0422A46B-C773-4483-9446-5253C44C4AAF",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd63xx_series:-:*:*:*:*:*:*:*",
"matchCriteriaId": "41C00A09-4C10-47E8-BD18-592C454EB8DD",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "An Improper Authentication issue was discovered in Hikvision DS-2CD2xx2F-I Series V5.2.0 build 140721 to V5.4.0 build 160530, DS-2CD2xx0F-I Series V5.2.0 build 140721 to V5.4.0 Build 160401, DS-2CD2xx2FWD Series V5.3.1 build 150410 to V5.4.4 Build 161125, DS-2CD4x2xFWD Series V5.2.0 build 140721 to V5.4.0 Build 160414, DS-2CD4xx5 Series V5.2.0 build 140721 to V5.4.0 Build 160421, DS-2DFx Series V5.2.0 build 140805 to V5.4.5 Build 160928, and DS-2CD63xx Series V5.0.9 build 140305 to V5.3.5 Build 160106 devices. The improper authentication vulnerability occurs when an application does not adequately or correctly authenticate users. This may allow a malicious user to escalate his or her privileges on the system and gain access to sensitive information."
},
{
"lang": "es",
"value": "Se detect\u00f3 un problema de autenticaci\u00f3n inapropiada en dispositivos DS-2CD2xx2F-I Series versiones V5.2.0 build 140721 hasta V5.4.0 build 160530, DS-2CD2xx0F-I Series versiones V5.2.0 build 140721 hasta V5.4.0 build 160530, DS-2CD2xx0F-I Series versiones V5.2.0 build 140721 hasta V5.4.0 build 160530, DS-2CD2xx0F-I Series versiones V5.2.0 build 140721 hasta V5.4.0 Build 160401, DS-2CD2xx2FWD Series versiones V5.3.1 build 150410 hasta V5.4.4 Build 161125, DS-2CD4x2xFWD Series versiones 5.2.0 build 140721 hasta V5.4.0 Build 160414, DS-2CD4xx5 Series versiones 5.2.0 build 140721 hasta V5.4.0 Build 160421, DS-2DFx Series versiones 5.2.0 build 140805 hasta V5.4.5 Build 160928 y Serie DS-2CD63xx versi\u00f3n 5.0.9 build 140305 hasta versi\u00f3n V5.3.5 Build 160106 de Hikvision. La vulnerabilidad de autenticaci\u00f3n inapropiada ocurre cuando una aplicaci\u00f3n no autentica adecuada o apropiadamente a los usuarios. Esto puede permitir a un usuario malicioso escalar sus privilegios en el sistema y conseguir acceso a informaci\u00f3n confidencial."
}
],
"id": "CVE-2017-7921",
"lastModified": "2024-12-27T21:15:06.250",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 10.0,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"exploitabilityScore": 3.9,
"impactScore": 6.0,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2017-05-06T00:29:00.350",
"references": [
{
"source": "ics-cert@hq.dhs.gov",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.hikvision.com/us/about_10805.html"
},
{
"source": "ics-cert@hq.dhs.gov",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/98313"
},
{
"source": "ics-cert@hq.dhs.gov",
"url": "https://ghostbin.com/paste/q2vq2"
},
{
"source": "ics-cert@hq.dhs.gov",
"tags": [
"Third Party Advisory",
"US Government Resource"
],
"url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-124-01"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.hikvision.com/us/about_10805.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/98313"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://ghostbin.com/paste/q2vq2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"US Government Resource"
],
"url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-124-01"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://www.hikvision.com/cn/support/CybersecurityCenter/SecurityNotices/20170314/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://www.hikvision.com/en/support/cybersecurity/security-advisory/security-notification--privilege-escalating-vulnerability-in-cer/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://www.hikvision.com/us-en/support/document-center/special-notices/privilege-escalating-vulnerability-in-certain-hikvision-ip-cameras/"
}
],
"sourceIdentifier": "ics-cert@hq.dhs.gov",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-287"
}
],
"source": "ics-cert@hq.dhs.gov",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-287"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Vulnerability from fkie_nvd
Published
2017-05-06 00:29
Modified
2024-12-27 21:15
Severity ?
Summary
A Password in Configuration File issue was discovered in Hikvision DS-2CD2xx2F-I Series V5.2.0 build 140721 to V5.4.0 build 160530, DS-2CD2xx0F-I Series V5.2.0 build 140721 to V5.4.0 Build 160401, DS-2CD2xx2FWD Series V5.3.1 build 150410 to V5.4.4 Build 161125, DS-2CD4x2xFWD Series V5.2.0 build 140721 to V5.4.0 Build 160414, DS-2CD4xx5 Series V5.2.0 build 140721 to V5.4.0 Build 160421, DS-2DFx Series V5.2.0 build 140805 to V5.4.5 Build 160928, and DS-2CD63xx Series V5.0.9 build 140305 to V5.3.5 Build 160106 devices. The password in configuration file vulnerability could allow a malicious user to escalate privileges or assume the identity of another user and access sensitive information.
References
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd2032-i_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "67F14B55-3F24-4C2F-9CBD-8495F1640E1C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd2112-i_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E4EFB5D7-C047-4B2F-A9F8-DDF2943A9355",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd2132-i_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2AAC7FBC-CB10-4A93-94E7-28770C95C0D2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd2212-i5_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1BCA1960-8910-474F-A030-8D16ABF983F8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd2232-i5_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B2A0DE65-CFBA-4A93-BDFF-67EA07E18797",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd2312-i_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "031D3A40-218C-4E40-BB08-55D59B299D55",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd2332-i_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5030CE6D-C9FD-4B51-8FDC-D114E4A495FD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd2412f-i\\(w\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "506744C5-C9C0-43E9-84E3-D028EBA4812E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd2432f-i\\(w\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "970AAE72-240C-4C6C-9B64-8724BB14179E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd2512f-i\\(s\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4B5F2930-FA07-4646-A566-50BF5772B56A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd2532f-i\\(s\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4A51D79A-F96A-4B94-A1E2-29C5269ACC75",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd2612f-i\\(s\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5A05C12A-BD0E-426C-8C6B-BE8D79265C31",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd2632f-i\\(s\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BF2DCFAB-6786-46C6-BB96-94DCAC21DEEB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd2712f-i\\(s\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "47F59EBD-EED0-4AA6-A932-CE2A69A00F06",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd2732f-i\\(s\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1A40C87A-D15E-43F8-B1A7-F8781FD7E648",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd2t32-i3_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1E3156D3-49BD-48E8-A3D6-9755DC76424A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd2t32-i5_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "367B2539-33D9-493C-881E-A87B308EE7C1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd2t32-i8_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5DEB0AB7-5508-4934-9689-B366C82A2555",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4012f-\\(a\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "971300D6-7689-4AEE-A5FA-41B4FC9DE661",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4012f-\\(p\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "682B9E12-DAE6-4E9C-B298-A089B3B06AD0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4012f-\\(w\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "27CF62B8-0F56-4FF1-9F2C-EF08B9486046",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4012fwd-\\(a\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "94AAA544-EA97-4428-BBDF-F4EB3E7C06C3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4012fwd-\\(p\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B8D5C288-D578-4C2D-9C81-05DCDF3128AD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4012fwd-\\(w\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "94E472B6-C7BF-45C4-806E-DD792179B344",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4024f-\\(a\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "07E7465C-A767-4C89-A503-D17A6D99594C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4024f-\\(p\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7D695E95-B05A-433A-8267-ED5E508E2611",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4024f-\\(w\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A566A5DD-3835-45EE-8B0D-23976F1A6ADA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4032fwd-\\(a\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "026E59E0-4EA1-4BEC-8256-29500202A45A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4032fwd-\\(p\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FDEAE9D6-F808-407D-A4ED-190D3EB76922",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4032fwd-\\(w\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C89FB18C-0FCB-45C6-BD46-B49E05F84A62",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4112f-i\\(z\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D1C06838-5D0D-4EA5-AF30-D416ED2CA72B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4112fwd-i\\(z\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EF568306-8596-4C98-B802-A867135DE168",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4124f-i\\(z\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D28421C3-3635-492B-93B0-EB2C7D2FE319",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4132fwd-i\\(z\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2922DD79-113F-4DBA-B66B-F301CD852AB5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4212f-i\\(h\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3D02A599-7269-4C8C-9B0B-EB031CEB3C58",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4212f-i\\(s\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4CD5B437-09AB-4185-BED1-418F24FA12BF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4212f-i\\(z\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5F8389E4-286F-44E8-B734-A56C61381B3B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4212fwd-i\\(h\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "495D790B-D5EC-47FE-9831-D9EC5FF0E370",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4212fwd-i\\(s\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8EC36C0A-F90F-4FCB-973C-A1522BA050BC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4212fwd-i\\(z\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1C0CACC7-C115-42C7-A6A5-87682EDD1F30",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4224f-i\\(h\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "878155AC-BA46-470C-81F9-8735683B0099",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4224f-i\\(s\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A04CAE37-D7CA-47E0-83E6-1DA546A96A41",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4224f-i\\(z\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D59474C9-BD7E-4B6D-AECE-2E6AF0E1AAB7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4232fwd-i\\(h\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E3ACA746-787F-4356-B3B0-6C994C862215",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4232fwd-i\\(s\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D28B3AFC-EEE1-4591-8AB4-3D702691CB83",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4232fwd-i\\(z\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A6AB3880-355D-4E59-A3C1-907A0F1FB190",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4312f-i\\(h\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FE31A803-0305-43DA-B14C-D32ECDA8C8FB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4312f-i\\(s\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6588501E-A1EB-44CF-AB20-8B0041611F53",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4312f-i\\(z\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E30F5534-18CA-41B2-80D5-B4957652D7C6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4324f-i\\(h\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AED0E4DE-4365-47A5-B622-097E9B772273",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4324f-i\\(s\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C8A1924B-EFE8-41B3-9BCC-D3EDA17DEBAA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4324f-i\\(z\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C3A1866F-ED55-4F52-8495-E9DEAEDFB818",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4332fwd-i\\(h\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "ED00F753-1F27-4242-BCA8-E9ECEB55ABA5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4332fwd-i\\(s\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D8153FD2-CB04-4B1D-99B5-E0FA95143651",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd4332fwd-i\\(z\\)_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "CD6451D9-F339-469F-BDB7-6B6ED2B23B65",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd6412fwd_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EB6A93A8-2433-4F8F-95AC-1C851373E8B8",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd2032-i:-:*:*:*:*:*:*:*",
"matchCriteriaId": "440EC1B2-A353-4198-ADAA-0D1900C66334",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd2112-i:-:*:*:*:*:*:*:*",
"matchCriteriaId": "70A3B528-F3FC-4509-B27C-6DFFB88E2812",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd2132-i:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2474C609-FCEF-4552-8FFB-8E1134ABBE05",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd2212-i5:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A90A26C5-46EF-471D-9E6B-08B567FA418D",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd2232-i5:-:*:*:*:*:*:*:*",
"matchCriteriaId": "479518FE-D18C-4E0E-8FBF-3C16EA9C09EF",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd2312-i:-:*:*:*:*:*:*:*",
"matchCriteriaId": "54096AF6-18EE-4E6D-AC4A-EAAC9DA0CFBB",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd2332-i:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F19E6984-C1F2-4852-AA9C-83B8D51E8377",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd2412f-i\\(w\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "88FEC246-85D6-42D0-98CD-894ACB716DA2",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd2432f-i\\(w\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "F8EFA20F-20D5-4397-AB57-3CF8D47C9DE1",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd2512f-i\\(s\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "1977B7E0-2770-45E8-9DB9-92DDD562F9E0",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd2532f-i\\(s\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "C1748AC1-D576-481E-A1C1-6CC1B66CC662",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd2612f-i\\(s\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "F8B63F4F-A734-419C-B463-037307C7D0B4",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd2632f-i\\(s\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "E9400E06-3563-49B9-A842-21849B4575B1",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd2712f-i\\(s\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "A14B25FD-DE45-4D2F-94FF-36440B590730",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd2732f-i\\(s\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "91752D15-CE11-4AB9-A277-3994C2392A9E",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd2t32-i3:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5D47AE1D-7857-404A-B5E5-E630C5C5FB19",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd2t32-i5:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B1DBD6D3-0CC7-45AB-80EC-04A81F1D867D",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd2t32-i8:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4FE3401A-62EC-4FE5-B572-86BAC673E6FB",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4012f-\\(a\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "B3ED1E98-001D-4094-9EDE-8EC63F48AC03",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4012f-\\(p\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "C721FD35-5D0A-4B13-92E3-F1865809EB82",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4012f-\\(w\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "43FEE9A8-5F9F-4B77-9CFF-264C8120397D",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4012fwd-\\(a\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "8163EE38-3951-4372-AF98-9B1ECFD75F6D",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4012fwd-\\(p\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "E37A894E-8797-4233-B5E3-B69544081995",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4012fwd-\\(w\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "EB077885-F3F0-4374-8CBD-518465281E72",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4024f-\\(a\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "F44BC3CE-B84A-4677-93A2-FAF1243F7B4A",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4024f-\\(p\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "3A50BB0F-EBE6-4059-B281-21FB6AE895CC",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4024f-\\(w\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "8B2CADD4-D0F1-46B6-9872-0FBC30AB583B",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4032fwd-\\(a\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "315803F3-D65C-43FA-BD9C-F542CF595BE9",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4032fwd-\\(p\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "EAFAE869-B4A3-4649-B7C1-270F3DDA7541",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4032fwd-\\(w\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "682A97CE-52A7-4828-8712-1C553A3643CF",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4112f-i\\(z\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "DF50EB52-8C52-460C-B910-3B01C59B5A44",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4112fwd-i\\(z\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "D8190727-5AD8-4698-98DC-8FD8CD6A3F5E",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4124f-i\\(z\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "2B565D09-2E78-49A9-BD20-0C14E9AF992A",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4132fwd-i\\(z\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "06C3BDBE-8E7D-4340-8079-19CDF52BF4A4",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4212f-i\\(h\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "751E7398-4A35-400F-B796-3AECE33C33F0",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4212f-i\\(s\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "F54C780D-A2A5-4B12-81B3-C2ACA8F04765",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4212f-i\\(z\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "227D1047-CA29-4A1D-9DC3-9F2711A07665",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4212fwd-i\\(h\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "D07ED71B-6878-4411-BB0F-75A55BE9CDA6",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4212fwd-i\\(s\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "7A51D501-8703-4091-968D-397AC6042172",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4212fwd-i\\(z\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "4E7DE24C-1AB2-4B8A-A123-98F9B16470F3",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4224f-i\\(h\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "AAD6E358-832E-4D6E-A7FF-2E2402FB8042",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4224f-i\\(s\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "F3FCB7FD-F5F7-430A-8EEC-796A09ABAF1C",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4224f-i\\(z\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "376A793E-B715-40DB-A452-B8A7665C852C",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4232fwd-i\\(h\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "DAA73C7D-A6CE-4899-BF22-EE8A01124E9D",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4232fwd-i\\(s\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "D59BFCC5-2248-496D-BEF3-5BBF06298C56",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4232fwd-i\\(z\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "932C1F8F-2E03-49D2-97B2-C9802D227458",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4312f-i\\(h\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "9B6EA131-5852-4FBD-BDDB-777CA21C4E66",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4312f-i\\(s\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "1DB8C4E7-5FEB-4234-975B-F40C068EAC1C",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4312f-i\\(z\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "7F90C69B-E195-4A94-B596-46B7B0DB7A25",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4324f-i\\(h\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "B7663F94-4C81-45DA-A560-9DE21A23462C",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4324f-i\\(s\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "51F51E2E-B441-49CB-86E1-C009C5E5353E",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4324f-i\\(z\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "E39824D3-EFD5-49A8-8B3C-3130F83513FB",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4332fwd-i\\(h\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "F7453F60-107B-4244-A14E-F85F05E483EC",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4332fwd-i\\(s\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "8A359284-1983-4311-B5BC-EC7FA51F842C",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd4332fwd-i\\(z\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "69936A56-CE23-4C9C-A4E7-AF27BD2ED2FA",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd6412fwd:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F631E8D1-3080-4E5F-9199-03224E01D6CD",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hikvision:ds-2dfx_series_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C1D40D18-52D0-4227-9510-8CB90AE922CD",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hikvision:ds-2dfx_series:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3DC3C1BE-7E94-46C1-9338-96E1F0129121",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hikvision:ds-2cd63xx_series_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0422A46B-C773-4483-9446-5253C44C4AAF",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hikvision:ds-2cd63xx_series:-:*:*:*:*:*:*:*",
"matchCriteriaId": "41C00A09-4C10-47E8-BD18-592C454EB8DD",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A Password in Configuration File issue was discovered in Hikvision DS-2CD2xx2F-I Series V5.2.0 build 140721 to V5.4.0 build 160530, DS-2CD2xx0F-I Series V5.2.0 build 140721 to V5.4.0 Build 160401, DS-2CD2xx2FWD Series V5.3.1 build 150410 to V5.4.4 Build 161125, DS-2CD4x2xFWD Series V5.2.0 build 140721 to V5.4.0 Build 160414, DS-2CD4xx5 Series V5.2.0 build 140721 to V5.4.0 Build 160421, DS-2DFx Series V5.2.0 build 140805 to V5.4.5 Build 160928, and DS-2CD63xx Series V5.0.9 build 140305 to V5.3.5 Build 160106 devices. The password in configuration file vulnerability could allow a malicious user to escalate privileges or assume the identity of another user and access sensitive information."
},
{
"lang": "es",
"value": "Se detect\u00f3 un problema de Contrase\u00f1a en el Archivo de Configuraci\u00f3n en dispositivos DS-2CD2xx2F-I Series versiones V5.2.0 build 140721 hasta V5.4.0 build 160530, DS-2CD2xx0F-I Series versiones V5.2.0 build 140721 hasta 5.4.0 Build 160401, Serie DS-2CD2xx2FWD versiones V5.3.1 build 150410 hasta 5.4.4 Build 161125, Serie DS-2CD4x2xFWD versiones 5.2.0 build 140721 hasta 5.4.0 Build 160414, Serie DS-2CD4xx5 versiones 5.2.0 build 140721 hasta 5.4.0 Build 160421, Serie DS-2DFx versiones 5.2.0 build 140805 hasta versi\u00f3n 5.4.5 Build 160928 y Serie DS-2CD63xx versiones 5.0.9 build 140305 hasta 5.3.5 Build 160106 de Hikvision. La vulnerabilidad de contrase\u00f1a en el archivo de configuraci\u00f3n podr\u00eda permitir a un usuario malicioso escalar privilegios o asumir la identidad de otro usuario y acceder a informaci\u00f3n confidencial."
}
],
"id": "CVE-2017-7923",
"lastModified": "2024-12-27T21:15:07.290",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "NONE",
"baseScore": 4.0,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:S/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 8.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2017-05-06T00:29:00.380",
"references": [
{
"source": "ics-cert@hq.dhs.gov",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.hikvision.com/us/about_10807.html"
},
{
"source": "ics-cert@hq.dhs.gov",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/98313"
},
{
"source": "ics-cert@hq.dhs.gov",
"url": "https://ghostbin.com/paste/q2vq2"
},
{
"source": "ics-cert@hq.dhs.gov",
"tags": [
"Third Party Advisory",
"US Government Resource"
],
"url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-124-01"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.hikvision.com/us/about_10807.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/98313"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://ghostbin.com/paste/q2vq2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"US Government Resource"
],
"url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-124-01"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://www.hikvision.com/cn/support/CybersecurityCenter/SecurityNotices/20170314/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://www.hikvision.com/en/support/cybersecurity/security-advisory/security-notification--privilege-escalating-vulnerability-in-cer/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://www.hikvision.com/us-en/support/document-center/special-notices/privilege-escalating-vulnerability-in-certain-hikvision-ip-cameras/"
}
],
"sourceIdentifier": "ics-cert@hq.dhs.gov",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-260"
}
],
"source": "ics-cert@hq.dhs.gov",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-200"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
cve-2017-7921
Vulnerability from cvelistv5
Published
2017-05-06 00:00
Modified
2024-12-27 20:39
Severity ?
EPSS score ?
Summary
An Improper Authentication issue was discovered in Hikvision DS-2CD2xx2F-I Series V5.2.0 build 140721 to V5.4.0 build 160530, DS-2CD2xx0F-I Series V5.2.0 build 140721 to V5.4.0 Build 160401, DS-2CD2xx2FWD Series V5.3.1 build 150410 to V5.4.4 Build 161125, DS-2CD4x2xFWD Series V5.2.0 build 140721 to V5.4.0 Build 160414, DS-2CD4xx5 Series V5.2.0 build 140721 to V5.4.0 Build 160421, DS-2DFx Series V5.2.0 build 140805 to V5.4.5 Build 160928, and DS-2CD63xx Series V5.0.9 build 140305 to V5.3.5 Build 160106 devices. The improper authentication vulnerability occurs when an application does not adequately or correctly authenticate users. This may allow a malicious user to escalate his or her privileges on the system and gain access to sensitive information.
References
| ▼ | URL | Tags |
|---|---|---|
| https://ics-cert.us-cert.gov/advisories/ICSA-17-124-01 | x_refsource_MISC | |
| http://www.securityfocus.com/bid/98313 | vdb-entry, x_refsource_BID | |
| https://ghostbin.com/paste/q2vq2 | x_refsource_MISC | |
| http://www.hikvision.com/us/about_10805.html | x_refsource_MISC |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| n/a | Hikvision Cameras |
Version: Hikvision Cameras |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-12-27T20:39:36.735Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"url": "https://www.hikvision.com/us-en/support/document-center/special-notices/privilege-escalating-vulnerability-in-certain-hikvision-ip-cameras/"
},
{
"url": "https://www.hikvision.com/cn/support/CybersecurityCenter/SecurityNotices/20170314/"
},
{
"url": "https://www.hikvision.com/en/support/cybersecurity/security-advisory/security-notification--privilege-escalating-vulnerability-in-cer/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-124-01"
},
{
"name": "98313",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/98313"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://ghostbin.com/paste/q2vq2"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.hikvision.com/us/about_10805.html"
}
],
"title": "CVE Program Container",
"x_generator": {
"engine": "ADPogram 0.0.1"
}
}
],
"cna": {
"affected": [
{
"product": "Hikvision Cameras",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Hikvision Cameras"
}
]
}
],
"datePublic": "2017-05-05T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "An Improper Authentication issue was discovered in Hikvision DS-2CD2xx2F-I Series V5.2.0 build 140721 to V5.4.0 build 160530, DS-2CD2xx0F-I Series V5.2.0 build 140721 to V5.4.0 Build 160401, DS-2CD2xx2FWD Series V5.3.1 build 150410 to V5.4.4 Build 161125, DS-2CD4x2xFWD Series V5.2.0 build 140721 to V5.4.0 Build 160414, DS-2CD4xx5 Series V5.2.0 build 140721 to V5.4.0 Build 160421, DS-2DFx Series V5.2.0 build 140805 to V5.4.5 Build 160928, and DS-2CD63xx Series V5.0.9 build 140305 to V5.3.5 Build 160106 devices. The improper authentication vulnerability occurs when an application does not adequately or correctly authenticate users. This may allow a malicious user to escalate his or her privileges on the system and gain access to sensitive information."
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-287",
"description": "CWE-287",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-12-18T03:57:01",
"orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
"shortName": "icscert"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-124-01"
},
{
"name": "98313",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/98313"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://ghostbin.com/paste/q2vq2"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.hikvision.com/us/about_10805.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "ics-cert@hq.dhs.gov",
"ID": "CVE-2017-7921",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Hikvision Cameras",
"version": {
"version_data": [
{
"version_value": "Hikvision Cameras"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "An Improper Authentication issue was discovered in Hikvision DS-2CD2xx2F-I Series V5.2.0 build 140721 to V5.4.0 build 160530, DS-2CD2xx0F-I Series V5.2.0 build 140721 to V5.4.0 Build 160401, DS-2CD2xx2FWD Series V5.3.1 build 150410 to V5.4.4 Build 161125, DS-2CD4x2xFWD Series V5.2.0 build 140721 to V5.4.0 Build 160414, DS-2CD4xx5 Series V5.2.0 build 140721 to V5.4.0 Build 160421, DS-2DFx Series V5.2.0 build 140805 to V5.4.5 Build 160928, and DS-2CD63xx Series V5.0.9 build 140305 to V5.3.5 Build 160106 devices. The improper authentication vulnerability occurs when an application does not adequately or correctly authenticate users. This may allow a malicious user to escalate his or her privileges on the system and gain access to sensitive information."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-287"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://ics-cert.us-cert.gov/advisories/ICSA-17-124-01",
"refsource": "MISC",
"url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-124-01"
},
{
"name": "98313",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/98313"
},
{
"name": "https://ghostbin.com/paste/q2vq2",
"refsource": "MISC",
"url": "https://ghostbin.com/paste/q2vq2"
},
{
"name": "http://www.hikvision.com/us/about_10805.html",
"refsource": "MISC",
"url": "http://www.hikvision.com/us/about_10805.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
"assignerShortName": "icscert",
"cveId": "CVE-2017-7921",
"datePublished": "2017-05-06T00:00:00",
"dateReserved": "2017-04-18T00:00:00",
"dateUpdated": "2024-12-27T20:39:36.735Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
cve-2017-7923
Vulnerability from cvelistv5
Published
2017-05-06 00:00
Modified
2024-12-27 20:58
Severity ?
EPSS score ?
Summary
A Password in Configuration File issue was discovered in Hikvision DS-2CD2xx2F-I Series V5.2.0 build 140721 to V5.4.0 build 160530, DS-2CD2xx0F-I Series V5.2.0 build 140721 to V5.4.0 Build 160401, DS-2CD2xx2FWD Series V5.3.1 build 150410 to V5.4.4 Build 161125, DS-2CD4x2xFWD Series V5.2.0 build 140721 to V5.4.0 Build 160414, DS-2CD4xx5 Series V5.2.0 build 140721 to V5.4.0 Build 160421, DS-2DFx Series V5.2.0 build 140805 to V5.4.5 Build 160928, and DS-2CD63xx Series V5.0.9 build 140305 to V5.3.5 Build 160106 devices. The password in configuration file vulnerability could allow a malicious user to escalate privileges or assume the identity of another user and access sensitive information.
References
| ▼ | URL | Tags |
|---|---|---|
| https://ics-cert.us-cert.gov/advisories/ICSA-17-124-01 | x_refsource_MISC | |
| http://www.securityfocus.com/bid/98313 | vdb-entry, x_refsource_BID | |
| https://ghostbin.com/paste/q2vq2 | x_refsource_MISC | |
| http://www.hikvision.com/us/about_10807.html | x_refsource_MISC |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| n/a | Hikvision Cameras |
Version: Hikvision Cameras |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-12-27T20:58:21.460Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"url": "https://www.hikvision.com/us-en/support/document-center/special-notices/privilege-escalating-vulnerability-in-certain-hikvision-ip-cameras/"
},
{
"url": "https://www.hikvision.com/cn/support/CybersecurityCenter/SecurityNotices/20170314/"
},
{
"url": "https://www.hikvision.com/en/support/cybersecurity/security-advisory/security-notification--privilege-escalating-vulnerability-in-cer/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-124-01"
},
{
"name": "98313",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/98313"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://ghostbin.com/paste/q2vq2"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.hikvision.com/us/about_10807.html"
}
],
"title": "CVE Program Container",
"x_generator": {
"engine": "ADPogram 0.0.1"
}
}
],
"cna": {
"affected": [
{
"product": "Hikvision Cameras",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Hikvision Cameras"
}
]
}
],
"datePublic": "2017-05-05T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "A Password in Configuration File issue was discovered in Hikvision DS-2CD2xx2F-I Series V5.2.0 build 140721 to V5.4.0 build 160530, DS-2CD2xx0F-I Series V5.2.0 build 140721 to V5.4.0 Build 160401, DS-2CD2xx2FWD Series V5.3.1 build 150410 to V5.4.4 Build 161125, DS-2CD4x2xFWD Series V5.2.0 build 140721 to V5.4.0 Build 160414, DS-2CD4xx5 Series V5.2.0 build 140721 to V5.4.0 Build 160421, DS-2DFx Series V5.2.0 build 140805 to V5.4.5 Build 160928, and DS-2CD63xx Series V5.0.9 build 140305 to V5.3.5 Build 160106 devices. The password in configuration file vulnerability could allow a malicious user to escalate privileges or assume the identity of another user and access sensitive information."
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-260",
"description": "CWE-260",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-12-18T03:57:01",
"orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
"shortName": "icscert"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-124-01"
},
{
"name": "98313",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/98313"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://ghostbin.com/paste/q2vq2"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.hikvision.com/us/about_10807.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "ics-cert@hq.dhs.gov",
"ID": "CVE-2017-7923",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Hikvision Cameras",
"version": {
"version_data": [
{
"version_value": "Hikvision Cameras"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A Password in Configuration File issue was discovered in Hikvision DS-2CD2xx2F-I Series V5.2.0 build 140721 to V5.4.0 build 160530, DS-2CD2xx0F-I Series V5.2.0 build 140721 to V5.4.0 Build 160401, DS-2CD2xx2FWD Series V5.3.1 build 150410 to V5.4.4 Build 161125, DS-2CD4x2xFWD Series V5.2.0 build 140721 to V5.4.0 Build 160414, DS-2CD4xx5 Series V5.2.0 build 140721 to V5.4.0 Build 160421, DS-2DFx Series V5.2.0 build 140805 to V5.4.5 Build 160928, and DS-2CD63xx Series V5.0.9 build 140305 to V5.3.5 Build 160106 devices. The password in configuration file vulnerability could allow a malicious user to escalate privileges or assume the identity of another user and access sensitive information."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-260"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://ics-cert.us-cert.gov/advisories/ICSA-17-124-01",
"refsource": "MISC",
"url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-124-01"
},
{
"name": "98313",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/98313"
},
{
"name": "https://ghostbin.com/paste/q2vq2",
"refsource": "MISC",
"url": "https://ghostbin.com/paste/q2vq2"
},
{
"name": "http://www.hikvision.com/us/about_10807.html",
"refsource": "MISC",
"url": "http://www.hikvision.com/us/about_10807.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
"assignerShortName": "icscert",
"cveId": "CVE-2017-7923",
"datePublished": "2017-05-06T00:00:00",
"dateReserved": "2017-04-18T00:00:00",
"dateUpdated": "2024-12-27T20:58:21.460Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}