Authentication bypass vulnerability in Hikvision IP cameras allows attackers to escalate privileges and gain unauthorized access. The vulnerability is classified as CWE-287 (Improper Authentication) and is actively exploited in the wild according to CISA KEV.
Data Source: CIRCL
Confidence: HIGH
Exploitation Method: DIRECT_NETWORK
CVE Published: 2017-05-06
Added to CISA KEV: 2026-03-05 3225 DAYS BETWEEN CVE AND KEV
CVE-2017-7921 is a critical vulnerability involving improper authentication in various Hikvision IP camera models [1] [3]. Because of its severity and ease of exploitation, it is included in the Cybersecurity and Infrastructure Security Agency (CISA) Known Exploited Vulnerabilities (KEV) Catalog [1].
This CVE is in CISA's Known Exploited Vulnerabilities Catalog Reference CISA's BOD 22-01 and Known Exploited Vulnerabilities Catalog for further guidance and requirements. ... Description. An Improper Authentication issue was discovered in Hikvision DS-2CD2xx2F-I Series V5.2.0 build 140721 to V5.4.0…
A PoC exploit for CVE-2017-7921 - Hikvision Camera Series Improper Authentication Vulnerability. - CVE-2017-7921-EXPLOIT/README.md at main · K3ysTr0K3R/CVE-2017-7921-EXPLOIT.The flaw identified in the affected Hikvision camera series is an "Improper Authentication" issue. This vulnerability arises w…
CVE-2017-7921 is an improper authentication flaw in certain Hikvision IP camera firmware that can enable privilege escalation. See affected versions, patches, and mitigations. ... CVE-2017-7921 affects specific Hikvision IP camera series running vulnerable firmware build ranges identified by Hikvisi…
Learn about CVE-2017-7921 affecting Hikvision Cameras, allowing improper authentication and unauthorized access. Find mitigation steps and long-term security practices. A vulnerability in Hikvision Cameras has been identified, allowing for improper authentication and potential elevation of privilege…
A security flaw identified as CVE-2017-7921, which affects various models of Hikvision cameras. The vulnerability was discovered in the DS-2CD2xx2F-I Series ... CVE-2017-7921 - Hikvision Camera Series Improper Authentication Vulnerability.Exploitation. It's crucial to emphasize that exploiting this…