{"containers": {"cna": {"affected": [{"product": "Hikvision Cameras", "vendor": "n/a", "versions": [{"status": "affected", "version": "Hikvision Cameras"}]}], "datePublic": "2017-05-05T00:00:00.000Z", "descriptions": [{"lang": "en", "value": "A Password in Configuration File issue was discovered in Hikvision DS-2CD2xx2F-I Series V5.2.0 build 140721 to V5.4.0 build 160530, DS-2CD2xx0F-I Series V5.2.0 build 140721 to V5.4.0 Build 160401, DS-2CD2xx2FWD Series V5.3.1 build 150410 to V5.4.4 Build 161125, DS-2CD4x2xFWD Series V5.2.0 build 140721 to V5.4.0 Build 160414, DS-2CD4xx5 Series V5.2.0 build 140721 to V5.4.0 Build 160421, DS-2DFx Series V5.2.0 build 140805 to V5.4.5 Build 160928, and DS-2CD63xx Series V5.0.9 build 140305 to V5.3.5 Build 160106 devices. The password in configuration file vulnerability could allow a malicious user to escalate privileges or assume the identity of another user and access sensitive information."}], "problemTypes": [{"descriptions": [{"cweId": "CWE-260", "description": "CWE-260", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"dateUpdated": "2017-12-18T03:57:01.000Z", "orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6", "shortName": "icscert"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-124-01"}, {"name": "98313", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/98313"}, {"tags": ["x_refsource_MISC"], "url": "https://ghostbin.com/paste/q2vq2"}, {"tags": ["x_refsource_MISC"], "url": "http://www.hikvision.com/us/about_10807.html"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "ics-cert@hq.dhs.gov", "ID": "CVE-2017-7923", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "Hikvision Cameras", "version": {"version_data": [{"version_value": "Hikvision Cameras"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "A Password in Configuration File issue was discovered in Hikvision DS-2CD2xx2F-I Series V5.2.0 build 140721 to V5.4.0 build 160530, DS-2CD2xx0F-I Series V5.2.0 build 140721 to V5.4.0 Build 160401, DS-2CD2xx2FWD Series V5.3.1 build 150410 to V5.4.4 Build 161125, DS-2CD4x2xFWD Series V5.2.0 build 140721 to V5.4.0 Build 160414, DS-2CD4xx5 Series V5.2.0 build 140721 to V5.4.0 Build 160421, DS-2DFx Series V5.2.0 build 140805 to V5.4.5 Build 160928, and DS-2CD63xx Series V5.0.9 build 140305 to V5.3.5 Build 160106 devices. The password in configuration file vulnerability could allow a malicious user to escalate privileges or assume the identity of another user and access sensitive information."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "CWE-260"}]}]}, "references": {"reference_data": [{"name": "https://ics-cert.us-cert.gov/advisories/ICSA-17-124-01", "refsource": "MISC", "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-124-01"}, {"name": "98313", "refsource": "BID", "url": "http://www.securityfocus.com/bid/98313"}, {"name": "https://ghostbin.com/paste/q2vq2", "refsource": "MISC", "url": "https://ghostbin.com/paste/q2vq2"}, {"name": "http://www.hikvision.com/us/about_10807.html", "refsource": "MISC", "url": "http://www.hikvision.com/us/about_10807.html"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-12-27T20:58:21.460Z"}, "references": [{"url": "https://www.hikvision.com/us-en/support/document-center/special-notices/privilege-escalating-vulnerability-in-certain-hikvision-ip-cameras/"}, {"url": "https://www.hikvision.com/cn/support/CybersecurityCenter/SecurityNotices/20170314/"}, {"url": "https://www.hikvision.com/en/support/cybersecurity/security-advisory/security-notification--privilege-escalating-vulnerability-in-cer/"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-124-01"}, {"name": "98313", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/98313"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://ghostbin.com/paste/q2vq2"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://www.hikvision.com/us/about_10807.html"}], "title": "CVE Program Container", "x_generator": {"engine": "ADPogram 0.0.1"}}]}, "cveMetadata": {"assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6", "assignerShortName": "icscert", "cveId": "CVE-2017-7923", "datePublished": "2017-05-06T00:00:00.000Z", "dateReserved": "2017-04-18T00:00:00.000Z", "dateUpdated": "2024-12-27T20:58:21.460Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:hikvision:ds-2cd2032-i_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "67F14B55-3F24-4C2F-9CBD-8495F1640E1C", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd2112-i_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "E4EFB5D7-C047-4B2F-A9F8-DDF2943A9355", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd2132-i_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "2AAC7FBC-CB10-4A93-94E7-28770C95C0D2", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd2212-i5_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "1BCA1960-8910-474F-A030-8D16ABF983F8", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd2232-i5_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "B2A0DE65-CFBA-4A93-BDFF-67EA07E18797", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd2312-i_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "031D3A40-218C-4E40-BB08-55D59B299D55", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd2332-i_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "5030CE6D-C9FD-4B51-8FDC-D114E4A495FD", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd2412f-i\\(w\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "506744C5-C9C0-43E9-84E3-D028EBA4812E", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd2432f-i\\(w\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "970AAE72-240C-4C6C-9B64-8724BB14179E", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd2512f-i\\(s\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "4B5F2930-FA07-4646-A566-50BF5772B56A", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd2532f-i\\(s\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "4A51D79A-F96A-4B94-A1E2-29C5269ACC75", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd2612f-i\\(s\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "5A05C12A-BD0E-426C-8C6B-BE8D79265C31", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd2632f-i\\(s\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "BF2DCFAB-6786-46C6-BB96-94DCAC21DEEB", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd2712f-i\\(s\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "47F59EBD-EED0-4AA6-A932-CE2A69A00F06", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd2732f-i\\(s\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "1A40C87A-D15E-43F8-B1A7-F8781FD7E648", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd2t32-i3_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "1E3156D3-49BD-48E8-A3D6-9755DC76424A", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd2t32-i5_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "367B2539-33D9-493C-881E-A87B308EE7C1", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd2t32-i8_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "5DEB0AB7-5508-4934-9689-B366C82A2555", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd4012f-\\(a\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "971300D6-7689-4AEE-A5FA-41B4FC9DE661", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd4012f-\\(p\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "682B9E12-DAE6-4E9C-B298-A089B3B06AD0", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd4012f-\\(w\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "27CF62B8-0F56-4FF1-9F2C-EF08B9486046", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd4012fwd-\\(a\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "94AAA544-EA97-4428-BBDF-F4EB3E7C06C3", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd4012fwd-\\(p\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "B8D5C288-D578-4C2D-9C81-05DCDF3128AD", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd4012fwd-\\(w\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "94E472B6-C7BF-45C4-806E-DD792179B344", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd4024f-\\(a\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "07E7465C-A767-4C89-A503-D17A6D99594C", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd4024f-\\(p\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "7D695E95-B05A-433A-8267-ED5E508E2611", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd4024f-\\(w\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "A566A5DD-3835-45EE-8B0D-23976F1A6ADA", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd4032fwd-\\(a\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "026E59E0-4EA1-4BEC-8256-29500202A45A", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd4032fwd-\\(p\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "FDEAE9D6-F808-407D-A4ED-190D3EB76922", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd4032fwd-\\(w\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "C89FB18C-0FCB-45C6-BD46-B49E05F84A62", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd4112f-i\\(z\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "D1C06838-5D0D-4EA5-AF30-D416ED2CA72B", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd4112fwd-i\\(z\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "EF568306-8596-4C98-B802-A867135DE168", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd4124f-i\\(z\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "D28421C3-3635-492B-93B0-EB2C7D2FE319", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd4132fwd-i\\(z\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "2922DD79-113F-4DBA-B66B-F301CD852AB5", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd4212f-i\\(h\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "3D02A599-7269-4C8C-9B0B-EB031CEB3C58", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd4212f-i\\(s\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "4CD5B437-09AB-4185-BED1-418F24FA12BF", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd4212f-i\\(z\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "5F8389E4-286F-44E8-B734-A56C61381B3B", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd4212fwd-i\\(h\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "495D790B-D5EC-47FE-9831-D9EC5FF0E370", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd4212fwd-i\\(s\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "8EC36C0A-F90F-4FCB-973C-A1522BA050BC", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd4212fwd-i\\(z\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "1C0CACC7-C115-42C7-A6A5-87682EDD1F30", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd4224f-i\\(h\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "878155AC-BA46-470C-81F9-8735683B0099", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd4224f-i\\(s\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "A04CAE37-D7CA-47E0-83E6-1DA546A96A41", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd4224f-i\\(z\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "D59474C9-BD7E-4B6D-AECE-2E6AF0E1AAB7", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd4232fwd-i\\(h\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "E3ACA746-787F-4356-B3B0-6C994C862215", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd4232fwd-i\\(s\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "D28B3AFC-EEE1-4591-8AB4-3D702691CB83", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd4232fwd-i\\(z\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "A6AB3880-355D-4E59-A3C1-907A0F1FB190", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd4312f-i\\(h\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "FE31A803-0305-43DA-B14C-D32ECDA8C8FB", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd4312f-i\\(s\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "6588501E-A1EB-44CF-AB20-8B0041611F53", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd4312f-i\\(z\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "E30F5534-18CA-41B2-80D5-B4957652D7C6", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd4324f-i\\(h\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "AED0E4DE-4365-47A5-B622-097E9B772273", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd4324f-i\\(s\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "C8A1924B-EFE8-41B3-9BCC-D3EDA17DEBAA", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd4324f-i\\(z\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "C3A1866F-ED55-4F52-8495-E9DEAEDFB818", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd4332fwd-i\\(h\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "ED00F753-1F27-4242-BCA8-E9ECEB55ABA5", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd4332fwd-i\\(s\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "D8153FD2-CB04-4B1D-99B5-E0FA95143651", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd4332fwd-i\\(z\\)_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "CD6451D9-F339-469F-BDB7-6B6ED2B23B65", "vulnerable": true}, {"criteria": "cpe:2.3:o:hikvision:ds-2cd6412fwd_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "EB6A93A8-2433-4F8F-95AC-1C851373E8B8", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:hikvision:ds-2cd2032-i:-:*:*:*:*:*:*:*", "matchCriteriaId": "440EC1B2-A353-4198-ADAA-0D1900C66334", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd2112-i:-:*:*:*:*:*:*:*", "matchCriteriaId": "70A3B528-F3FC-4509-B27C-6DFFB88E2812", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd2132-i:-:*:*:*:*:*:*:*", "matchCriteriaId": "2474C609-FCEF-4552-8FFB-8E1134ABBE05", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd2212-i5:-:*:*:*:*:*:*:*", "matchCriteriaId": "A90A26C5-46EF-471D-9E6B-08B567FA418D", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd2232-i5:-:*:*:*:*:*:*:*", "matchCriteriaId": "479518FE-D18C-4E0E-8FBF-3C16EA9C09EF", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd2312-i:-:*:*:*:*:*:*:*", "matchCriteriaId": "54096AF6-18EE-4E6D-AC4A-EAAC9DA0CFBB", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd2332-i:-:*:*:*:*:*:*:*", "matchCriteriaId": "F19E6984-C1F2-4852-AA9C-83B8D51E8377", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd2412f-i\\(w\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "88FEC246-85D6-42D0-98CD-894ACB716DA2", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd2432f-i\\(w\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "F8EFA20F-20D5-4397-AB57-3CF8D47C9DE1", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd2512f-i\\(s\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "1977B7E0-2770-45E8-9DB9-92DDD562F9E0", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd2532f-i\\(s\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "C1748AC1-D576-481E-A1C1-6CC1B66CC662", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd2612f-i\\(s\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "F8B63F4F-A734-419C-B463-037307C7D0B4", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd2632f-i\\(s\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "E9400E06-3563-49B9-A842-21849B4575B1", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd2712f-i\\(s\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "A14B25FD-DE45-4D2F-94FF-36440B590730", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd2732f-i\\(s\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "91752D15-CE11-4AB9-A277-3994C2392A9E", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd2t32-i3:-:*:*:*:*:*:*:*", "matchCriteriaId": "5D47AE1D-7857-404A-B5E5-E630C5C5FB19", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd2t32-i5:-:*:*:*:*:*:*:*", "matchCriteriaId": "B1DBD6D3-0CC7-45AB-80EC-04A81F1D867D", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd2t32-i8:-:*:*:*:*:*:*:*", "matchCriteriaId": "4FE3401A-62EC-4FE5-B572-86BAC673E6FB", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd4012f-\\(a\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "B3ED1E98-001D-4094-9EDE-8EC63F48AC03", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd4012f-\\(p\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "C721FD35-5D0A-4B13-92E3-F1865809EB82", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd4012f-\\(w\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "43FEE9A8-5F9F-4B77-9CFF-264C8120397D", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd4012fwd-\\(a\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "8163EE38-3951-4372-AF98-9B1ECFD75F6D", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd4012fwd-\\(p\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "E37A894E-8797-4233-B5E3-B69544081995", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd4012fwd-\\(w\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "EB077885-F3F0-4374-8CBD-518465281E72", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd4024f-\\(a\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "F44BC3CE-B84A-4677-93A2-FAF1243F7B4A", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd4024f-\\(p\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "3A50BB0F-EBE6-4059-B281-21FB6AE895CC", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd4024f-\\(w\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "8B2CADD4-D0F1-46B6-9872-0FBC30AB583B", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd4032fwd-\\(a\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "315803F3-D65C-43FA-BD9C-F542CF595BE9", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd4032fwd-\\(p\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "EAFAE869-B4A3-4649-B7C1-270F3DDA7541", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd4032fwd-\\(w\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "682A97CE-52A7-4828-8712-1C553A3643CF", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd4112f-i\\(z\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "DF50EB52-8C52-460C-B910-3B01C59B5A44", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd4112fwd-i\\(z\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "D8190727-5AD8-4698-98DC-8FD8CD6A3F5E", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd4124f-i\\(z\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "2B565D09-2E78-49A9-BD20-0C14E9AF992A", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd4132fwd-i\\(z\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "06C3BDBE-8E7D-4340-8079-19CDF52BF4A4", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd4212f-i\\(h\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "751E7398-4A35-400F-B796-3AECE33C33F0", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd4212f-i\\(s\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "F54C780D-A2A5-4B12-81B3-C2ACA8F04765", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd4212f-i\\(z\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "227D1047-CA29-4A1D-9DC3-9F2711A07665", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd4212fwd-i\\(h\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "D07ED71B-6878-4411-BB0F-75A55BE9CDA6", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd4212fwd-i\\(s\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "7A51D501-8703-4091-968D-397AC6042172", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd4212fwd-i\\(z\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "4E7DE24C-1AB2-4B8A-A123-98F9B16470F3", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd4224f-i\\(h\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "AAD6E358-832E-4D6E-A7FF-2E2402FB8042", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd4224f-i\\(s\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "F3FCB7FD-F5F7-430A-8EEC-796A09ABAF1C", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd4224f-i\\(z\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "376A793E-B715-40DB-A452-B8A7665C852C", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd4232fwd-i\\(h\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "DAA73C7D-A6CE-4899-BF22-EE8A01124E9D", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd4232fwd-i\\(s\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "D59BFCC5-2248-496D-BEF3-5BBF06298C56", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd4232fwd-i\\(z\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "932C1F8F-2E03-49D2-97B2-C9802D227458", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd4312f-i\\(h\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "9B6EA131-5852-4FBD-BDDB-777CA21C4E66", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd4312f-i\\(s\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "1DB8C4E7-5FEB-4234-975B-F40C068EAC1C", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd4312f-i\\(z\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "7F90C69B-E195-4A94-B596-46B7B0DB7A25", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd4324f-i\\(h\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "B7663F94-4C81-45DA-A560-9DE21A23462C", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd4324f-i\\(s\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "51F51E2E-B441-49CB-86E1-C009C5E5353E", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd4324f-i\\(z\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "E39824D3-EFD5-49A8-8B3C-3130F83513FB", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd4332fwd-i\\(h\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "F7453F60-107B-4244-A14E-F85F05E483EC", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd4332fwd-i\\(s\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "8A359284-1983-4311-B5BC-EC7FA51F842C", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd4332fwd-i\\(z\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "69936A56-CE23-4C9C-A4E7-AF27BD2ED2FA", "vulnerable": false}, {"criteria": "cpe:2.3:h:hikvision:ds-2cd6412fwd:-:*:*:*:*:*:*:*", "matchCriteriaId": "F631E8D1-3080-4E5F-9199-03224E01D6CD", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:hikvision:ds-2dfx_series_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "C1D40D18-52D0-4227-9510-8CB90AE922CD", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:hikvision:ds-2dfx_series:-:*:*:*:*:*:*:*", "matchCriteriaId": "3DC3C1BE-7E94-46C1-9338-96E1F0129121", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:hikvision:ds-2cd63xx_series_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "0422A46B-C773-4483-9446-5253C44C4AAF", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:hikvision:ds-2cd63xx_series:-:*:*:*:*:*:*:*", "matchCriteriaId": "41C00A09-4C10-47E8-BD18-592C454EB8DD", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "A Password in Configuration File issue was discovered in Hikvision DS-2CD2xx2F-I Series V5.2.0 build 140721 to V5.4.0 build 160530, DS-2CD2xx0F-I Series V5.2.0 build 140721 to V5.4.0 Build 160401, DS-2CD2xx2FWD Series V5.3.1 build 150410 to V5.4.4 Build 161125, DS-2CD4x2xFWD Series V5.2.0 build 140721 to V5.4.0 Build 160414, DS-2CD4xx5 Series V5.2.0 build 140721 to V5.4.0 Build 160421, DS-2DFx Series V5.2.0 build 140805 to V5.4.5 Build 160928, and DS-2CD63xx Series V5.0.9 build 140305 to V5.3.5 Build 160106 devices. The password in configuration file vulnerability could allow a malicious user to escalate privileges or assume the identity of another user and access sensitive information."}, {"lang": "es", "value": "Se detect\u00f3 un problema de Contrase\u00f1a en el Archivo de Configuraci\u00f3n en dispositivos DS-2CD2xx2F-I Series versiones V5.2.0 build 140721 hasta V5.4.0 build 160530, DS-2CD2xx0F-I Series versiones V5.2.0 build 140721 hasta 5.4.0 Build 160401, Serie DS-2CD2xx2FWD versiones V5.3.1 build 150410 hasta 5.4.4 Build 161125, Serie DS-2CD4x2xFWD versiones 5.2.0 build 140721 hasta 5.4.0 Build 160414, Serie DS-2CD4xx5 versiones 5.2.0 build 140721 hasta 5.4.0 Build 160421, Serie DS-2DFx versiones 5.2.0 build 140805 hasta versi\u00f3n 5.4.5 Build 160928 y Serie DS-2CD63xx versiones 5.0.9 build 140305 hasta 5.3.5 Build 160106 de Hikvision. La vulnerabilidad de contrase\u00f1a en el archivo de configuraci\u00f3n podr\u00eda permitir a un usuario malicioso escalar privilegios o asumir la identidad de otro usuario y acceder a informaci\u00f3n confidencial."}], "id": "CVE-2017-7923", "lastModified": "2025-04-20T01:37:25.860", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "NONE", "baseScore": 4.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:S/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2017-05-06T00:29:00.380", "references": [{"source": "ics-cert@hq.dhs.gov", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.hikvision.com/us/about_10807.html"}, {"source": "ics-cert@hq.dhs.gov", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/98313"}, {"source": "ics-cert@hq.dhs.gov", "url": "https://ghostbin.com/paste/q2vq2"}, {"source": "ics-cert@hq.dhs.gov", "tags": ["Third Party Advisory", "US Government Resource"], "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-124-01"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.hikvision.com/us/about_10807.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/98313"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://ghostbin.com/paste/q2vq2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "US Government Resource"], "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-124-01"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://www.hikvision.com/cn/support/CybersecurityCenter/SecurityNotices/20170314/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://www.hikvision.com/en/support/cybersecurity/security-advisory/security-notification--privilege-escalating-vulnerability-in-cer/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://www.hikvision.com/us-en/support/document-center/special-notices/privilege-escalating-vulnerability-in-certain-hikvision-ip-cameras/"}], "sourceIdentifier": "ics-cert@hq.dhs.gov", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-260"}], "source": "ics-cert@hq.dhs.gov", "type": "Secondary"}, {"description": [{"lang": "en", "value": "CWE-200"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}

{}