March 13, 2017 Views:502
SN No. HSRC-201703-04
Edit: Hikvision Security Response Center (HSRC)
Initial Release Date: 2017-03-10
Update Release Date: 2017-03-12
While processing a specified request code, the user privilege-escalating vulnerability may occur for select Hikvision IP cameras with particular firmware version.
This vulnerability was discovered, and until now, has not been designated as Common Vulnerabilities and Exposures(CVE).
By exploiting this vulnerability, attackers could obtain an unauthorized escalated additional user privilege to acquire or tamper with the device information.
Update devices with the correct firmware.
Fixed firmware download link: http://www.hikvision.com.au/download_89.html
Should you have a security problem or concern, please contact Hikvision Security Response Center at firstname.lastname@example.org.