LeakIX - Host 106.96.46.198

Host 106.96.46.198

South Korea

LGTELECOM

Vulnerable HiSilicon family DVR

This vulnerability (with proof of concept (PoC) code) affects DVR/NVR devices built using the HiSilicon hi3520d and similar system on a chip (SoC).

Exploiting the vulnerabilities lead to unauthorized remote code execution (RCE) using only the web interface, causing full takeover of the exploited device

IP: 106.96.46.198
Port: 8000
URL: http://106.96.46.198:8000

First seen 2024-02-19 11:44
- Severity: high
  Fingerprint: 321975614123c6c05f83e99bce92ad985b0ec83d5b0ec83d5b0ec83d5b0ec83d
```
Found HiSiliconDVR firmware:
Hardware: General 50H20L
Vulnerable to multiple issues : LFI, possibly RCE
```
  Found on 2024-02-19 11:44
Create report

2024-06-02 11:27

SMB NTLMSSP handshake results:
Found Windows 10.0 build 19041
NbComputerName: DESKTOP-ODIV725
NbDomainName: DESKTOP-ODIV725
DNSComputerName: DESKTOP-ODIV725
DNSDomainName: DESKTOP-ODIV725

Found 2024-06-02 by SmbPlugin

Create report

Domain summary

No record

Host 106.96.46.198

South Korea

Vulnerable HiSilicon family DVR

Create report

Domain summary