Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2017-7921
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
An Improper Authentication issue was discovered in Hikvision DS-2CD2xx2F-I Series V5.2.0 build 140721 to V5.4.0 build 160530, DS-2CD2xx0F-I Series V5.2.0 build 140721 to V5.4.0 Build 160401, DS-2CD2xx2FWD Series V5.3.1 build 150410 to V5.4.4 Build 161125, DS-2CD4x2xFWD Series V5.2.0 build 140721 to V5.4.0 Build 160414, DS-2CD4xx5 Series V5.2.0 build 140721 to V5.4.0 Build 160421, DS-2DFx Series V5.2.0 build 140805 to V5.4.5 Build 160928, and DS-2CD63xx Series V5.0.9 build 140305 to V5.3.5 Build 160106 devices. The improper authentication vulnerability occurs when an application does not adequately or correctly authenticate users. This may allow a malicious user to escalate his or her privileges on the system and gain access to sensitive information.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
认证机制不恰当
Source: NVD (National Vulnerability Database)
Vulnerability Title
多款Hikvision产品安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Hikvision DS-2CD2xx2F-I Series等都是中国海康威视(Hikvision)公司的网络摄像头产品。 多款Hikvision产品中存在身份验证漏洞。攻击者可利用该漏洞提升权限,获取敏感信息的访问权限。以下产品和版本受到影响:Hikvision DS-2CD2xx2F-I Series 5.2.0 build 140721版本至5.4.0 build 160530版本;DS-2CD2xx0F-I Series 5.2.0 build 140721版本至5.4.0 Build 16040
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
VendorProductAffected VersionsCPESubscribe
-Hikvision Cameras Hikvision Cameras -
II. Public POCs for CVE-2017-7921
#POC DescriptionSource LinkShenlong Link
1Hikvision camera CVE-2017-7921-EXPhttps://github.com/JrDw0/CVE-2017-7921-EXPPOC Details
2海康威视未授权访问检测poc及口令爆破https://github.com/BurnyMcDull/CVE-2017-7921POC Details
3Hikvision IP camera access bypass exploit, developed by golang. https://github.com/MisakaMikato/cve-2017-7921-golangPOC Details
4This python file will decrypt the configurationFile used by hikvision cameras vulnerable to CVE-2017-7921.https://github.com/chrisjd20/hikvision_CVE-2017-7921_auth_bypass_config_decryptorPOC Details
5Nonehttps://github.com/p4tq/hikvision_CVE-2017-7921_auth_bypass_config_decryptorPOC Details
6CVE-2017-7921-EXP Hikvision camerahttps://github.com/201646613/CVE-2017-7921POC Details
7Nonehttps://github.com/inj3ction/CVE-2017-7921-EXPPOC Details
8CVE-2017-7921 EXPLOIThttps://github.com/krypton612/hikivisionPOC Details
9A PoC exploit for CVE-2017-7921 - Hikvision Camera Series Improper Authentication Vulnerability.https://github.com/K3ysTr0K3R/CVE-2017-7921-EXPLOITPOC Details
10CVE-2017-7921 exploit. Allows admin password retrieval and automatic snapshot download.https://github.com/fracergu/CVE-2017-7921POC Details
11Python script get image from Hikvision camera with CVE-2017-7921 vulnerabilityhttps://github.com/AnonkiGroup/AnonHikPOC Details
12Nonehttps://github.com/b3pwn3d/CVE-2017-7921POC Details
13Nonehttps://github.com/yousouf-Tasfin/cve-2017-7921-Mass-ExploitPOC Details
14 Test For CVE-2017–7921; https://github.com/kooroshsanaei/HikVision-CVE-2017-7921POC Details
15Identify hikvision ip and probe for cve-s (CVE-2017-7921, CVE-2022-28171, CVE-2021-36260)https://github.com/aengussong/hikvision_probePOC Details
16CVE-2017-7921复现解密文件分享 免费下载https://github.com/andychao/CVE-2017-7921_reproduces_decrypted_file_sharingPOC Details
17Hikvision DS-2CD2xx2F-I Series V5.2.0 build 140721 to V5.4.0 build 160530, DS-2CD2xx0F-I Series V5.2.0 build 140721 to V5.4.0 Build 160401, DS-2CD2xx2FWD Series V5.3.1 build 150410 to V5.4.4 Build 161125, DS-2CD4x2xFWD Series V5.2.0 build 140721 to V5.4.0 Build 160414, DS-2CD4xx5 Series V5.2.0 build 140721 to V5.4.0 Build 160421, DS-2DFx Series V5.2.0 build 140805 to V5.4.5 Build 160928, and DS-2CD63xx Series V5.0.9 build 140305 to V5.3.5 Build 160106 devices contain an improper authentication issue. The improper authentication vulnerability occurs when an application does not adequately or correctly authenticate users. This may allow a malicious user to escalate his or her privileges on the system and gain access to sensitive information.https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2017/CVE-2017-7921.yamlPOC Details
18CVE-2017-7921 exploit. Allows admin password retrieval and automatic snapshot download.https://github.com/GabrielAvls/CVE-2017-7921POC Details
19Проверка на уязвимость камер Hikvision - CVE-2017-7921https://github.com/initon/Hikvision---CVE-2017-7921POC Details
20Nonehttps://github.com/lastvocher/Hikvision-CVE-2017-7921-decryptorPOC Details
21This tool is a modern evolution of older PoCs like those for CVE-2017-7921 and ICSA-17-124-01, updated for 2025 with live console output, threading for speed, and honeypot filtering (skips devices with >12 open ports). It's built for red teamers, bug bounty hunters, and security researchers to identifyhttps://github.com/voidsshadows/Hikvision-City-HunterPOC Details
22CVE-2017-7921 is a critical vulnerability (CVSS score: 9.8) affecting multiple Hikvision IP camera and DVR models, first disclosed in 2017. It stems from an improper authentication flaw that allows unauthenticated remote attackers to bypass login mechanisms and gain unauthorized access to sensitive system informationhttps://github.com/f3d0rq/CVE-2017-7921POC Details
23CVE-2017-7921 is a critical vulnerability (CVSS score: 9.8) affecting multiple Hikvision IP camera and DVR models, first disclosed in 2017. It stems from an improper authentication flaw that allows unauthenticated remote attackers to bypass login mechanisms and gain unauthorized access to sensitive system informationhttps://github.com/0xf3d0rq/CVE-2017-7921POC Details
24CVE-2017-7921, CVE-2021-36260 updated 21/01/2026https://github.com/saaydmr/hikvision-exploiterPOC Details
25用于借助FOFA快速测试海康威视的CVE-2017-7921漏洞,并且给出登陆账号和密码,并输出json文件。https://github.com/Wyl-cmd/CVE-2017-7921-Research-ToolkitPOC Details
26HikVision Auth Bypass CVE, tool is able to extract credentials, and take snapshots based on magic cookie or supplied credentials.https://github.com/mverschu/CVE-2017-7921POC Details
27simple CVE-2017-7921 rewrite in python by me. for educational purposes only!https://github.com/KelvinWin10/CVE-2017-7921-rewritePOC Details
AI-Generated POCPremium

No public POC found.

Login to generate AI POC
III. Intelligence Information for CVE-2017-7921
Please Login to view more intelligence information
IV. Related Vulnerabilities
Same product: Hikvision Cameras
Same vendor: n/a
Same weakness: CWE-287
V. Comments for CVE-2017-7921

No comments yet

Leave a comment