Details of VAR-201705-4194

ID

VAR-201705-4194

TITLE

Hikvision s2-045 Remote Command Execution Vulnerability in Multiple Product Systems

Trust: 0.6

sources: CNVD: CNVD-2017-03481

DESCRIPTION

Hikvision is a video-centric IoT solution and data operation service provider. Hikvision's multiple product systems use Apache Struts xwork as the website application framework. The file upload function of the Jakarta plugin has a remote command execution vulnerability s2-045. Attackers can modify the Content- in the HTTP request header when uploading files. Type value to trigger the vulnerability, and then execute system commands to obtain server permissions.

Trust: 0.6

sources: CNVD: CNVD-2017-03481

IOT TAXONOMY

category:

['IoT', 'Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2017-03481

AFFECTED PRODUCTS

vendor:	hikvision digital	model:	ivms-5000 security integrated platform	scope:	-	version:	-	Trust: 0.6
vendor:	hikvision digital	model:	ivms-7700 visual integrated management application platform	scope:	-	version:	-	Trust: 0.6
vendor:	hikvision digital	model:	ivms-7800 integrated video surveillance management platform	scope:	-	version:	-	Trust: 0.6
vendor:	hikvision digital	model:	ivms-7810 operator building integrated management platform	scope:	-	version:	-	Trust: 0.6
vendor:	hikvision digital	model:	ivms-7xx0 visual integrated management application platform	scope:	-	version:	-	Trust: 0.6
vendor:	hikvision digital	model:	ivms-8200 integrated video surveillance management platform	scope:	-	version:	-	Trust: 0.6
vendor:	hikvision digital	model:	ivms-8300-b security integrated platform	scope:	-	version:	-	Trust: 0.6
vendor:	hikvision digital	model:	ivms-8300x	scope:	-	version:	-	Trust: 0.6
vendor:	hikvision digital	model:	ivms-8300 security integrated platform	scope:	-	version:	-	Trust: 0.6
vendor:	hikvision digital	model:	ivms-8510 government building integrated management platform	scope:	-	version:	-	Trust: 0.6
vendor:	hikvision digital	model:	ivms-8520e integrated administrative service management system	scope:	-	version:	-	Trust: 0.6
vendor:	hikvision digital	model:	ivms-8520 integrated administrative service management system	scope:	-	version:	-	Trust: 0.6
vendor:	hikvision digital	model:	ivms-8700e government building integrated management platform	scope:	-	version:	-	Trust: 0.6
vendor:	hikvision digital	model:	enterprise supervision system ivms-8130	scope:	-	version:	-	Trust: 0.6
vendor:	hikvision digital	model:	ivms-7000e	scope:	-	version:	-	Trust: 0.6
vendor:	hikvision digital	model:	video network monitoring system ivms-8100	scope:	-	version:	-	Trust: 0.6
vendor:	hikvision digital	model:	video network monitoring system ivms-8130	scope:	-	version:	-	Trust: 0.6
vendor:	hikvision digital	model:	ivms-7000 centralized monitoring application management system	scope:	-	version:	-	Trust: 0.6
vendor:	hikvision digital	model:	ivms-7000e centralized monitoring application management system	scope:	-	version:	-	Trust: 0.6
vendor:	hikvision digital	model:	ivms-9660 centralized monitoring application management system	scope:	-	version:	-	Trust: 0.6

sources: CNVD: CNVD-2017-03481

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD:	CNVD-2017-03481
value:	HIGH
Trust: 0.6

CNVD:	CNVD-2017-03481
severity:	HIGH
baseScore:	10.0
vectorString:	AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

sources: CNVD: CNVD-2017-03481

PATCH

title:

Hikvision Struts2-045 Remote Code Execution Vulnerability in Multiple Product Systems

url:

https://www.cnvd.org.cn/patchinfo/show/90783

Trust: 0.6

sources: CNVD: CNVD-2017-03481

EXTERNAL IDS

db:

CNVD

id:

CNVD-2017-03481

Trust: 0.6

sources: CNVD: CNVD-2017-03481

SOURCES

db:

CNVD

id:

CNVD-2017-03481

LAST UPDATE DATE

2022-05-04T09:47:39.351000+00:00

SOURCES UPDATE DATE

db:

CNVD

id:

CNVD-2017-03481

date:

2018-07-18T00:00:00

SOURCES RELEASE DATE

db:

CNVD

id:

CNVD-2017-03481

date:

2017-05-08T00:00:00