LeakIX - Host 179.233.31.235

Host 179.233.31.235

Brazil

Claro NXT Telecomunicacoes Ltda

Vulnerable HiSilicon family DVR

This vulnerability (with proof of concept (PoC) code) affects DVR/NVR devices built using the HiSilicon hi3520d and similar system on a chip (SoC).

Exploiting the vulnerabilities lead to unauthorized remote code execution (RCE) using only the web interface, causing full takeover of the exploited device

IP: 179.233.31.235
Port: 80
URL: http://179.233.31.235

First seen 2022-05-14 23:26
Last seen 2023-02-02 08:41
Open for 263 days
- Severity: high
  Fingerprint: 321975614123c6c05f83e99b6424387ea5b200bfa5b200bfa5b200bfa5b200bf
```
Found HiSiliconDVR firmware:
Hardware: General AHB8016T-LME
Vulnerable to multiple issues : LFI, possibly RCE
```
  Found on 2022-05-14 23:26
Create report

Open service 179.233.31.235:80

2023-01-10 17:03
```
Content-type: text/html
Server: uc-httpd 1.0.0
Expires: 0

Page title: GIGA Security
```
Found 2023-01-10 by HttpPlugin
Create report
Open service 179.233.31.235:80

2023-01-07 20:34
```
Content-type: text/html
Server: uc-httpd 1.0.0
Expires: 0

Page title: GIGA Security
```
Found 2023-01-07 by HttpPlugin
Create report
Open service 179.233.31.235:80

2023-01-23 15:10
```
Content-type: text/html
Server: uc-httpd 1.0.0
Expires: 0

Page title: GIGA Security
```
Found 2023-01-23 by HttpPlugin
Create report
Open service 179.233.31.235:80

2022-11-28 09:20
```
Content-type: text/html
Server: uc-httpd 1.0.0
Expires: 0

Page title: GIGA Security
```
Found 2022-11-28 by HttpPlugin
Create report
Open service 179.233.31.235:80

2022-12-13 13:18
```
Content-type: text/html
Server: uc-httpd 1.0.0
Expires: 0

Page title: GIGA Security
```
Found 2022-12-13 by HttpPlugin
Create report

Open service 179.233.31.235:80

2023-02-02 08:41

HTTP/1.0 200 OK
Content-type: text/html
Server: uc-httpd 1.0.0
Expires: 0

Page title: GIGA Security

Found 23 hours ago by HttpPlugin

Create report

Open service 179.233.31.235:80

2022-12-08 10:19
```
Content-type: text/html
Server: uc-httpd 1.0.0
Expires: 0

Page title: GIGA Security
```
Found 2022-12-08 by HttpPlugin
Create report
Open service 179.233.31.235:80

2022-12-07 22:01
```
Content-type: text/html
Server: uc-httpd 1.0.0
Expires: 0

Page title: GIGA Security
```
Found 2022-12-07 by HttpPlugin
Create report

Domain summary

No record

(C) 2022 LeakIX
About LeakIX - Credits - Take-down and blacklist requests - Security issues - Terms and conditions - Cookie policy - Legal notice