CVSS: 8.8EPSS: 0%CPEs: 116EXPL: 0CVE-2017-7923
https://notcve.org/view.php?id=CVE-2017-7923
06 May 2017 — A Password in Configuration File issue was discovered in Hikvision DS-2CD2xx2F-I Series V5.2.0 build 140721 to V5.4.0 build 160530, DS-2CD2xx0F-I Series V5.2.0 build 140721 to V5.4.0 Build 160401, DS-2CD2xx2FWD Series V5.3.1 build 150410 to V5.4.4 Build 161125, DS-2CD4x2xFWD Series V5.2.0 build 140721 to V5.4.0 Build 160414, DS-2CD4xx5 Series V5.2.0 build 140721 to V5.4.0 Build 160421, DS-2DFx Series V5.2.0 build 140805 to V5.4.5 Build 160928, and DS-2CD63xx Series V5.0.9 build 140305 to V5.3.5 Build 160106... • http://www.hikvision.com/us/about_10807.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-260: Password in Configuration File •
CVSS: 10.0EPSS: 31%CPEs: 116EXPL: 15CVE-2017-7921 – Hikvision IP Camera Unauthenticated Password Change Via Improper Authentication Logic
https://notcve.org/view.php?id=CVE-2017-7921
06 May 2017 — An Improper Authentication issue was discovered in Hikvision DS-2CD2xx2F-I Series V5.2.0 build 140721 to V5.4.0 build 160530, DS-2CD2xx0F-I Series V5.2.0 build 140721 to V5.4.0 Build 160401, DS-2CD2xx2FWD Series V5.3.1 build 150410 to V5.4.4 Build 161125, DS-2CD4x2xFWD Series V5.2.0 build 140721 to V5.4.0 Build 160414, DS-2CD4xx5 Series V5.2.0 build 140721 to V5.4.0 Build 160421, DS-2DFx Series V5.2.0 build 140805 to V5.4.5 Build 160928, and DS-2CD63xx Series V5.0.9 build 140305 to V5.3.5 Build 160106 devic... • https://github.com/JrDw0/CVE-2017-7921-EXP • CWE-287: Improper Authentication •