Description
Many Hikvision IP cameras have improper authorization logic that allows unauthenticated information disclosure of camera information, such as detailed hardware and software configuration, user credentials, and camera snapshots. The vulnerability has been present in Hikvision products since 2014. In addition to Hikvision-branded devices, it affects many white-labeled camera products sold under a variety of brand names. Hundreds of thousands of vulnerable devices are still exposed to the Internet at the time of publishing (shodan search: "App-webs" "200 OK"). This module allows the attacker to retrieve this information without any authentication. The information is stored in loot for future use.
Module options
To display the available options, load the module within the Metasploit console and run the commands 'show options' or 'show advanced':
msf > use auxiliary/gather/hikvision_info_disclosure_cve_2017_7921msf undefined(hikvision_info_disclosure_cve_2017_7921) > show actions ...actions...msf undefined(hikvision_info_disclosure_cve_2017_7921) > set ACTION < action-name >msf undefined(hikvision_info_disclosure_cve_2017_7921) > show options ...show and set options...msf undefined(hikvision_info_disclosure_cve_2017_7921) > runPrioritise with Active Threat Intelligence
With curated Threat Intelligence, you can see which vulnerabilities truly put you at risk, prioritize what matters most, and act before attackers do.
Explore Intelligence Hub