LeakIX - Host 42.118.167.197

Host 42.118.167.197

Vietnam

FPT Telecom Company

Vulnerable HiSilicon family DVR

This vulnerability (with proof of concept (PoC) code) affects DVR/NVR devices built using the HiSilicon hi3520d and similar system on a chip (SoC).

Exploiting the vulnerabilities lead to unauthorized remote code execution (RCE) using only the web interface, causing full takeover of the exploited device

IP: 42.118.167.197
Port: 80
URL: http://42.118.167.197

First seen 2024-04-24 07:41
Last seen 2024-04-30 19:25
Open for 6 days
- Severity: high
  Fingerprint: 321975614123c6c05f83e99b2614d7eadcfbe2dbdcfbe2dbdcfbe2dbdcfbe2db
```
Found HiSiliconDVR firmware:
Hardware: General NBD6804T-F
Vulnerable to multiple issues : LFI, possibly RCE
```
  Found on 2024-04-30 19:25
Create report

2024-06-14 20:52

HTTP/1.0 302 Found
Pragma: no-cache
Location: /weblogin.htm
Content-type: text/html

Page title: 302 Document moved

<html>
  <head>
  <title>302 Document moved</title>
  </head>
<body>

This document has moved <A HREF="/weblogin.htm">here</A>.<P>
</body>
</html>

Found 2024-06-14 by HttpPlugin

Create report

www.draytek.com

Fingerprint:

e5fbcd08f18b93a4da35b72a8be251f457be0e61b0479961af26aaa14202e4c9

CN:

Vigor Router

Key:

RSA-2048

Issuer:

Vigor Router

Not before:

2020-03-23 16:49

Not after:

2022-03-23 16:49

Domain summary

No record

Host 42.118.167.197

Vietnam

Vulnerable HiSilicon family DVR

Create report

www.draytek.com

Domain summary