Hikvision IP Camera Remote Authentication Bypass

Critical Nessus Plugin ID 107056

Synopsis

The remote IP camera web server is affected by an authentication bypass vulnerability.

Description

The remote Hikvision IP camera is affected by an authentication bypass vulnerability. A remote, unauthenticated attacker can read configurations (including account passwords), access the camera images, or modify the camera firmware.

Solution

Upgrade to a resolved firmware version as per the vendor advisory.

See Also

http://www.hikvision.com/us/about_10805.html

http://www.hikvision.com/us/about_10807.html

http://www.nessus.org/u?18ce5951

Plugin Details

Severity: Critical

ID: 107056

File Name: hikvision_auth_bypass.nasl

Version: 1.4

Type: remote

Family: CGI abuses

Published: 2018/02/28

Modified: 2018/06/14

Dependencies: 107057

Risk Information

Risk Factor: Critical

CVSSv2

Base Score: 10

Temporal Score: 7.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:U/RL:OF/RC:C

CVSSv3

Base Score: 10

Temporal Score: 8.7

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

Required KB Items: installed_sw/Hikvision IP Camera

Exploited by Nessus: true

Patch Publication Date: 2017/03/10

Vulnerability Publication Date: 2017/03/10

Reference Information

CVE: CVE-2017-7921, CVE-2017-7923

BID: 98313

ICSA: 17-124-01