Host 123.27.25.148
Vietnam
Software information
webserver
tcp/8011
-
Vulnerable HiSilicon family DVR
This vulnerability (with proof of concept (PoC) code) affects DVR/NVR devices built using the HiSilicon hi3520d and similar system on a chip (SoC).
Exploiting the vulnerabilities lead to unauthorized remote code execution (RCE) using only the web interface, causing full takeover of the exploited device
First seen 2022-05-26 11:10
Last seen 2022-05-30 00:27
Open for 3 days-
Severity: high
Fingerprint: 321975614123c6c05f83e99b9ef7d2d583a0925683a0925683a0925683a09256Found HiSiliconDVR firmware: Hardware: General TVI9708H_H Vulnerable to multiple issues : LFI, possibly RCE
Found on 2022-05-26 11:10
-
-
Open service 123.27.25.148:8011
2022-12-10 04:26
Date: Sat, 10 Dec 2022 11:16:51 GMT Server: webserver X-Frame-Options: SAMEORIGIN ETag: "31e-258-601baea6" Content-Length: 600 Content-Type: text/html Connection: close Last-Modified: Thu, 04 Feb 2021 08:21:58 GMT <!doctype html> <html> <head> <title></title> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge" > <meta http-equiv="Pragma" content="no-cache" /> <meta http-equiv="Cache-Control" content="no-cache, must-revalidate" /> <meta http-equiv="Expires" content="0" /> <!-- 去除edge下将数字处理成电话的错误 --> <meta name="format-detection" content="telephone=no"> </head> <body> </body> <script> window.location.href = "/doc/page/login.asp?_" + (new Date()).getTime(); </script> </html>Found 2022-12-10 by HttpPluginCreate report