Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
9.8
Hikvision Products Let Attackers Access Sensitive Data
Known exploited
Exploitation likelihood: 94%
CVE-2017-7921
CVE-2017-7921
Summary
Hikvision security cameras and recorders have a security weakness that could allow hackers to gain elevated access and see sensitive information. This means that if a hacker gets into your system, they could potentially see or modify private data. To protect yourself, make sure to update your Hikvision software to the latest version and follow best security practices for your network.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| hikvision | multiple products | All versions | – |
| hikvision | ds-2cd2032-i_firmware | All versions | – |
| hikvision | ds-2cd2112-i_firmware | All versions | – |
| hikvision | ds-2cd2132-i_firmware | All versions | – |
| hikvision | ds-2cd2212-i5_firmware | All versions | – |
| hikvision | ds-2cd2232-i5_firmware | All versions | – |
| hikvision | ds-2cd2312-i_firmware | All versions | – |
| hikvision | ds-2cd2332-i_firmware | All versions | – |
| hikvision | ds-2cd2412f-i\(w\)_firmware | All versions | – |
| hikvision | ds-2cd2432f-i\(w\)_firmware | All versions | – |
| hikvision | ds-2cd2512f-i\(s\)_firmware | All versions | – |
| hikvision | ds-2cd2532f-i\(s\)_firmware | All versions | – |
| hikvision | ds-2cd2612f-i\(s\)_firmware | All versions | – |
| hikvision | ds-2cd2632f-i\(s\)_firmware | All versions | – |
| hikvision | ds-2cd2712f-i\(s\)_firmware | All versions | – |
| hikvision | ds-2cd2732f-i\(s\)_firmware | All versions | – |
| hikvision | ds-2cd2t32-i3_firmware | All versions | – |
| hikvision | ds-2cd2t32-i5_firmware | All versions | – |
| hikvision | ds-2cd2t32-i8_firmware | All versions | – |
| hikvision | ds-2cd4012f-\(a\)_firmware | All versions | – |
| hikvision | ds-2cd4012f-\(p\)_firmware | All versions | – |
| hikvision | ds-2cd4012f-\(w\)_firmware | All versions | – |
| hikvision | ds-2cd4012fwd-\(a\)_firmware | All versions | – |
| hikvision | ds-2cd4012fwd-\(p\)_firmware | All versions | – |
| hikvision | ds-2cd4012fwd-\(w\)_firmware | All versions | – |
| hikvision | ds-2cd4024f-\(a\)_firmware | All versions | – |
| hikvision | ds-2cd4024f-\(p\)_firmware | All versions | – |
| hikvision | ds-2cd4024f-\(w\)_firmware | All versions | – |
| hikvision | ds-2cd4032fwd-\(a\)_firmware | All versions | – |
| hikvision | ds-2cd4032fwd-\(p\)_firmware | All versions | – |
| hikvision | ds-2cd4032fwd-\(w\)_firmware | All versions | – |
| hikvision | ds-2cd4112f-i\(z\)_firmware | All versions | – |
| hikvision | ds-2cd4112fwd-i\(z\)_firmware | All versions | – |
| hikvision | ds-2cd4124f-i\(z\)_firmware | All versions | – |
| hikvision | ds-2cd4132fwd-i\(z\)_firmware | All versions | – |
| hikvision | ds-2cd4212f-i\(h\)_firmware | All versions | – |
| hikvision | ds-2cd4212f-i\(s\)_firmware | All versions | – |
| hikvision | ds-2cd4212f-i\(z\)_firmware | All versions | – |
| hikvision | ds-2cd4212fwd-i\(h\)_firmware | All versions | – |
| hikvision | ds-2cd4212fwd-i\(s\)_firmware | All versions | – |
| hikvision | ds-2cd4212fwd-i\(z\)_firmware | All versions | – |
| hikvision | ds-2cd4224f-i\(h\)_firmware | All versions | – |
| hikvision | ds-2cd4224f-i\(s\)_firmware | All versions | – |
| hikvision | ds-2cd4224f-i\(z\)_firmware | All versions | – |
| hikvision | ds-2cd4232fwd-i\(h\)_firmware | All versions | – |
| hikvision | ds-2cd4232fwd-i\(s\)_firmware | All versions | – |
| hikvision | ds-2cd4232fwd-i\(z\)_firmware | All versions | – |
| hikvision | ds-2cd4312f-i\(h\)_firmware | All versions | – |
| hikvision | ds-2cd4312f-i\(s\)_firmware | All versions | – |
| hikvision | ds-2cd4312f-i\(z\)_firmware | All versions | – |
| hikvision | ds-2cd4324f-i\(h\)_firmware | All versions | – |
| hikvision | ds-2cd4324f-i\(s\)_firmware | All versions | – |
| hikvision | ds-2cd4324f-i\(z\)_firmware | All versions | – |
| hikvision | ds-2cd4332fwd-i\(h\)_firmware | All versions | – |
| hikvision | ds-2cd4332fwd-i\(s\)_firmware | All versions | – |
| hikvision | ds-2cd4332fwd-i\(z\)_firmware | All versions | – |
| hikvision | ds-2cd6412fwd_firmware | All versions | – |
| hikvision | ds-2dfx_series_firmware | All versions | – |
| hikvision | ds-2cd63xx_series_firmware | All versions | – |
Original title
Hikvision Multiple Products Improper Authentication Vulnerability
Original description
Multiple Hikvision products contain an improper authentication vulnerability that could allow a malicious user to escalate privileges on the system and gain access to sensitive information.
Vulnerability type
CWE-287
Improper Authentication
- http://www.hikvision.com/us/about_10805.html Patch Vendor Advisory
- http://www.securityfocus.com/bid/98313 Third Party Advisory VDB Entry
- https://ghostbin.com/paste/q2vq2
- https://ics-cert.us-cert.gov/advisories/ICSA-17-124-01 Third Party Advisory US Government Resource
- https://www.hikvision.com/cn/support/CybersecurityCenter/SecurityNotices/2017031...
- https://www.hikvision.com/en/support/cybersecurity/security-advisory/security-no...
- https://www.hikvision.com/us-en/support/document-center/special-notices/privileg...
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2017-...
Published: 5 Mar 2026 · Updated: 14 Mar 2026 · First seen: 6 Mar 2026