LeakIX - Host 118.68.94.174

Host 118.68.94.174

Vietnam

FPT Telecom Company

Software information

Boa 0.94.13

tcp/443 tcp/80

Vulnerable HiSilicon family DVR

This vulnerability (with proof of concept (PoC) code) affects DVR/NVR devices built using the HiSilicon hi3520d and similar system on a chip (SoC).

Exploiting the vulnerabilities lead to unauthorized remote code execution (RCE) using only the web interface, causing full takeover of the exploited device

IP: 118.68.94.174
Port: 81
URL: http://118.68.94.174:81

First seen 2024-01-18 11:47
- Severity: high
  Fingerprint: 321975614123c6c05f83e99b2711ab76525057b7525057b7525057b7525057b7
```
Found HiSiliconDVR firmware:
Hardware: General HI3516EV100_50H20L_S38
Vulnerable to multiple issues : LFI, possibly RCE
```
  Found on 2024-01-18 11:47
Create report
Vulnerable HiSilicon family DVR

This vulnerability (with proof of concept (PoC) code) affects DVR/NVR devices built using the HiSilicon hi3520d and similar system on a chip (SoC).

Exploiting the vulnerabilities lead to unauthorized remote code execution (RCE) using only the web interface, causing full takeover of the exploited device

IP: 118.68.94.174
Port: 83
URL: http://118.68.94.174:83

First seen 2024-01-11 21:04
Last seen 2024-01-18 07:38
Open for 6 days
- Severity: high
  Fingerprint: 321975614123c6c05f83e99b91f7c49ebca0459fbca0459fbca0459fbca0459f
```
Found HiSiliconDVR firmware:
Hardware: General 50H20L_18EV200_S38
Vulnerable to multiple issues : LFI, possibly RCE
```
  Found on 2024-01-18 07:38
Create report

Open service 118.68.94.174:443

2024-09-10 17:13

HTTP/1.0 401 Unauthorized
Date: Sun, 27 Aug 2017 04:00:39 GMT
Server: Boa/0.94.13
Content-Type: text/html; charset=gb2312
Set-Cookie: SESSIONID=186f4fef;

Page title: Login

<HTML><HEAD><TITLE>Login</TITLE><script language=javascript>top.location.replace("/cgi-bin/login.asp");</script></HEAD><body></body></HTML>

Found 2024-09-10 by HttpPlugin

Create report

Open service 118.68.94.174:80

2024-09-09 18:55

HTTP/1.0 401 Unauthorized
Date: Sat, 26 Aug 2017 05:43:01 GMT
Server: Boa/0.94.13
Connection: close
Content-Type: text/html; charset=gb2312
Set-Cookie: SESSIONID=7f72e347;

Page title: Login

<HTML><HEAD><TITLE>Login</TITLE><script language=javascript>top.location.replace("/cgi-bin/login.asp");</script></HEAD><body></body></HTML>

Found 2024-09-09 by HttpPlugin

Create report

Fingerprint:

f2e3c88114a96d029b3b206c07c2c73da909ec78cad0824f05712d112105dae3

CN:

192.168.1.1

Key:

RSA-2048

Issuer:

Not before:

2017-07-24 09:32

Not after:

2117-06-30 09:32

Domain summary

No record

Host 118.68.94.174

Vietnam

Software information

Vulnerable HiSilicon family DVR

Vulnerable HiSilicon family DVR

Create report

Create report

Domain summary