High severity8.8NVD Advisory· Published May 6, 2017· Updated May 13, 2026

CVE-2017-7923

Description

A Password in Configuration File issue was discovered in Hikvision DS-2CD2xx2F-I Series V5.2.0 build 140721 to V5.4.0 build 160530, DS-2CD2xx0F-I Series V5.2.0 build 140721 to V5.4.0 Build 160401, DS-2CD2xx2FWD Series V5.3.1 build 150410 to V5.4.4 Build 161125, DS-2CD4x2xFWD Series V5.2.0 build 140721 to V5.4.0 Build 160414, DS-2CD4xx5 Series V5.2.0 build 140721 to V5.4.0 Build 160421, DS-2DFx Series V5.2.0 build 140805 to V5.4.5 Build 160928, and DS-2CD63xx Series V5.0.9 build 140305 to V5.3.5 Build 160106 devices. The password in configuration file vulnerability could allow a malicious user to escalate privileges or assume the identity of another user and access sensitive information.

Affected products

Hikvision/Ds 2dfx Series Firmware
cpe:2.3:o:hikvision:ds-2dfx_series_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd63xx Series Firmware
cpe:2.3:o:hikvision:ds-2cd63xx_series_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd2032 I Firmware
cpe:2.3:o:hikvision:ds-2cd2032-i_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd2112 I Firmware
cpe:2.3:o:hikvision:ds-2cd2112-i_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd2132 I Firmware
cpe:2.3:o:hikvision:ds-2cd2132-i_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd2212 I5 Firmware
cpe:2.3:o:hikvision:ds-2cd2212-i5_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd2232 I5 Firmware
cpe:2.3:o:hikvision:ds-2cd2232-i5_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd2312 I Firmware
cpe:2.3:o:hikvision:ds-2cd2312-i_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd2332 I Firmware
cpe:2.3:o:hikvision:ds-2cd2332-i_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd2412f I\(w\) Firmware
cpe:2.3:o:hikvision:ds-2cd2412f-i\(w\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd2432f I\(w\) Firmware
cpe:2.3:o:hikvision:ds-2cd2432f-i\(w\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd2512f I\(s\) Firmware
cpe:2.3:o:hikvision:ds-2cd2512f-i\(s\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd2532f I\(s\) Firmware
cpe:2.3:o:hikvision:ds-2cd2532f-i\(s\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd2612f I\(s\) Firmware
cpe:2.3:o:hikvision:ds-2cd2612f-i\(s\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd2632f I\(s\) Firmware
cpe:2.3:o:hikvision:ds-2cd2632f-i\(s\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd2712f I\(s\) Firmware
cpe:2.3:o:hikvision:ds-2cd2712f-i\(s\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd2732f I\(s\) Firmware
cpe:2.3:o:hikvision:ds-2cd2732f-i\(s\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd2t32 I3 Firmware
cpe:2.3:o:hikvision:ds-2cd2t32-i3_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd2t32 I5 Firmware
cpe:2.3:o:hikvision:ds-2cd2t32-i5_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd2t32 I8 Firmware
cpe:2.3:o:hikvision:ds-2cd2t32-i8_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd4012f \(a\) Firmware
cpe:2.3:o:hikvision:ds-2cd4012f-\(a\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd4012f \(p\) Firmware
cpe:2.3:o:hikvision:ds-2cd4012f-\(p\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd4012f \(w\) Firmware
cpe:2.3:o:hikvision:ds-2cd4012f-\(w\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd4012fwd \(a\) Firmware
cpe:2.3:o:hikvision:ds-2cd4012fwd-\(a\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd4012fwd \(p\) Firmware
cpe:2.3:o:hikvision:ds-2cd4012fwd-\(p\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd4012fwd \(w\) Firmware
cpe:2.3:o:hikvision:ds-2cd4012fwd-\(w\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd4024f \(a\) Firmware
cpe:2.3:o:hikvision:ds-2cd4024f-\(a\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd4024f \(p\) Firmware
cpe:2.3:o:hikvision:ds-2cd4024f-\(p\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd4024f \(w\) Firmware
cpe:2.3:o:hikvision:ds-2cd4024f-\(w\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd4032fwd \(a\) Firmware
cpe:2.3:o:hikvision:ds-2cd4032fwd-\(a\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd4032fwd \(p\) Firmware
cpe:2.3:o:hikvision:ds-2cd4032fwd-\(p\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd4032fwd \(w\) Firmware
cpe:2.3:o:hikvision:ds-2cd4032fwd-\(w\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd4112f I\(z\) Firmware
cpe:2.3:o:hikvision:ds-2cd4112f-i\(z\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd4112fwd I\(z\) Firmware
cpe:2.3:o:hikvision:ds-2cd4112fwd-i\(z\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd4124f I\(z\) Firmware
cpe:2.3:o:hikvision:ds-2cd4124f-i\(z\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd4132fwd I\(z\) Firmware
cpe:2.3:o:hikvision:ds-2cd4132fwd-i\(z\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd4212f I\(h\) Firmware
cpe:2.3:o:hikvision:ds-2cd4212f-i\(h\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd4212f I\(s\) Firmware
cpe:2.3:o:hikvision:ds-2cd4212f-i\(s\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd4212f I\(z\) Firmware
cpe:2.3:o:hikvision:ds-2cd4212f-i\(z\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd4212fwd I\(h\) Firmware
cpe:2.3:o:hikvision:ds-2cd4212fwd-i\(h\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd4212fwd I\(s\) Firmware
cpe:2.3:o:hikvision:ds-2cd4212fwd-i\(s\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd4212fwd I\(z\) Firmware
cpe:2.3:o:hikvision:ds-2cd4212fwd-i\(z\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd4224f I\(h\) Firmware
cpe:2.3:o:hikvision:ds-2cd4224f-i\(h\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd4224f I\(s\) Firmware
cpe:2.3:o:hikvision:ds-2cd4224f-i\(s\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd4224f I\(z\) Firmware
cpe:2.3:o:hikvision:ds-2cd4224f-i\(z\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd4232fwd I\(h\) Firmware
cpe:2.3:o:hikvision:ds-2cd4232fwd-i\(h\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd4232fwd I\(s\) Firmware
cpe:2.3:o:hikvision:ds-2cd4232fwd-i\(s\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd4232fwd I\(z\) Firmware
cpe:2.3:o:hikvision:ds-2cd4232fwd-i\(z\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd4312f I\(h\) Firmware
cpe:2.3:o:hikvision:ds-2cd4312f-i\(h\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd4312f I\(s\) Firmware
cpe:2.3:o:hikvision:ds-2cd4312f-i\(s\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd4312f I\(z\) Firmware
cpe:2.3:o:hikvision:ds-2cd4312f-i\(z\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd4324f I\(h\) Firmware
cpe:2.3:o:hikvision:ds-2cd4324f-i\(h\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd4324f I\(s\) Firmware
cpe:2.3:o:hikvision:ds-2cd4324f-i\(s\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd4324f I\(z\) Firmware
cpe:2.3:o:hikvision:ds-2cd4324f-i\(z\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd4332fwd I\(h\) Firmware
cpe:2.3:o:hikvision:ds-2cd4332fwd-i\(h\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd4332fwd I\(s\) Firmware
cpe:2.3:o:hikvision:ds-2cd4332fwd-i\(s\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd4332fwd I\(z\) Firmware
cpe:2.3:o:hikvision:ds-2cd4332fwd-i\(z\)_firmware:-:*:*:*:*:*:*:*
Hikvision/Ds 2cd6412fwd Firmware
cpe:2.3:o:hikvision:ds-2cd6412fwd_firmware:-:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.hikvision.com/us/about_10807.htmlnvdPatchVendor Advisory
www.securityfocus.com/bid/98313nvdThird Party AdvisoryVDB Entry
ics-cert.us-cert.gov/advisories/ICSA-17-124-01nvdThird Party AdvisoryUS Government Resource
ghostbin.com/paste/q2vq2nvd
www.hikvision.com/cn/support/CybersecurityCenter/SecurityNotices/20170314/nvd
www.hikvision.com/en/support/cybersecurity/security-advisory/security-notification--privilege-escalating-vulnerability-in-cer/nvd
www.hikvision.com/us-en/support/document-center/special-notices/privilege-escalating-vulnerability-in-certain-hikvision-ip-cameras/nvd

News mentions

No linked articles in our index yet.

cvss	0.572
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000