LeakIX - Host 37.191.92.62

Host 37.191.92.62

Iran

Ariana Gostar Spadana (PJSC)

Software information

uc-httpd 1.0.0

tcp/80

Vulnerable HiSilicon family DVR

This vulnerability (with proof of concept (PoC) code) affects DVR/NVR devices built using the HiSilicon hi3520d and similar system on a chip (SoC).

Exploiting the vulnerabilities lead to unauthorized remote code execution (RCE) using only the web interface, causing full takeover of the exploited device

IP: 37.191.92.62
Port: 80
URL: http://37.191.92.62

First seen 2022-05-14 23:36
- Severity: high
  Fingerprint: 321975614123c6c05f83e99bc8c0c2edba198faeba198faeba198faeba198fae
```
Found HiSiliconDVR firmware:
Hardware: General AHD9708H_HH
Vulnerable to multiple issues : LFI, possibly RCE
```
  Found on 2022-05-14 23:36
Create report

Open service 37.191.92.62:80

2022-11-18 15:42

Content-type: text/html
Server: uc-httpd/1.0.0
Cache-Control: max-age=2592000
Connection: Close

Page title: Web Client

Found 2022-11-18 by HttpPlugin

Create report

Open service 37.191.92.62:80

2022-11-06 23:43

Content-type: text/html
Server: uc-httpd/1.0.0
Cache-Control: max-age=2592000
Connection: Close

Page title: Web Client

Found 2022-11-06 by HttpPlugin

Create report

Domain summary

No record

(C) 2022 LeakIX
About LeakIX - Credits - Take-down and blacklist requests - Security issues - Terms and conditions - Cookie policy - Legal notice