LeakIX - Host 188.225.208.61

Host 188.225.208.61

Palestine

Coolnet New Communication Provider

Software information

UPnP 1.0

tcp/80

WebServer 1.0

tcp/80

Vulnerable HiSilicon family DVR

This vulnerability (with proof of concept (PoC) code) affects DVR/NVR devices built using the HiSilicon hi3520d and similar system on a chip (SoC).

Exploiting the vulnerabilities lead to unauthorized remote code execution (RCE) using only the web interface, causing full takeover of the exploited device

IP: 188.225.208.61
Port: 81
URL: http://188.225.208.61:81

First seen 2024-03-02 16:53
- Severity: high
  Fingerprint: 321975614123c6c05f83e99b58badd15831c1d16831c1d16831c1d16831c1d16
```
Found HiSiliconDVR firmware:
Hardware: General TVI3104_H
Vulnerable to multiple issues : LFI, possibly RCE
```
  Found on 2024-03-02 16:53
Create report

Open service 188.225.208.61:80

2024-04-24 20:51

HTTP/1.1 303 See Other
Location: http://188.225.208.61/login_security.html
Content-Length: 0
X-Frame-Options: sameorigin
Server: WebServer/1.0 UPnP/1.0
Connection: close
EXT:

Found 2024-04-24 by HttpPlugin

Create report

Domain summary

No record

Host 188.225.208.61

Palestine

Software information

Vulnerable HiSilicon family DVR

Create report

Domain summary