CVE-2017-7921

Deferred

Published: 06 May 2017, 00:00

Last modified:06 Mar 2026, 05:01

Vulnerability Summary

Overall Risk (default)

critical

90/100

CVSS Score

10 CRITICAL

v3.0 (nvd)

EPSS Score

94.23% CRITICAL

94% probability +0.13%

KEV

Listed

CISA

1 listing

Ransomware

No reports

Public exploits

2 found

Dark Web

Not detected

Timeline

06 May 2017, 00:00

Published

Vulnerability first disclosed

05 Mar 2026, 00:00

Added to CISA KEV

Hikvision Multiple Products Improper Authentication Vulnerability

06 Mar 2026, 05:01

Last Modified

Vulnerability information updated

26 Mar 2026, 00:00

CISA Remediation Due

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Description

An Improper Authentication issue was discovered in Hikvision DS-2CD2xx2F-I Series V5.2.0 build 140721 to V5.4.0 build 160530, DS-2CD2xx0F-I Series V5.2.0 build 140721 to V5.4.0 Build 160401, DS-2CD2xx2FWD Series V5.3.1 build 150410 to V5.4.4 Build 161125, DS-2CD4x2xFWD Series V5.2.0 build 140721 to V5.4.0 Build 160414, DS-2CD4xx5 Series V5.2.0 build 140721 to V5.4.0 Build 160421, DS-2DFx Series V5.2.0 build 140805 to V5.4.5 Build 160928, and DS-2CD63xx Series V5.0.9 build 140305 to V5.3.5 Build 160106 devices. The improper authentication vulnerability occurs when an application does not adequately or correctly authenticate users. This may allow a malicious user to escalate his or her privileges on the system and gain access to sensitive information.

CVSS Metrics

v3.1•CRITICAL•Score: 9.8CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
v3.0•CRITICAL•Score: 10CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
v2.0•HIGH•Score: 7.5AV:N/AC:L/Au:N/C:P/I:P/A:P

EPSS Trends

Current EPSS score: 94.23%• Percentile: 100%

Techniques & Countermeasures

CWE-287•Improper Authentication
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

Affected Systems

hikvision•ds-2cd2032-i_firmware
na
hikvision•ds-2cd2112-i_firmware
na
hikvision•ds-2cd2132-i_firmware
na
hikvision•ds-2cd2212-i5_firmware
na
hikvision•ds-2cd2232-i5_firmware
na
hikvision•ds-2cd2312-i_firmware
na
hikvision•ds-2cd2332-i_firmware
na
hikvision•ds-2cd2412f-i\(w\)_firmware
na
hikvision•ds-2cd2432f-i\(w\)_firmware
na
hikvision•ds-2cd2512f-i\(s\)_firmware
na
hikvision•ds-2cd2532f-i\(s\)_firmware
na
hikvision•ds-2cd2612f-i\(s\)_firmware
na
hikvision•ds-2cd2632f-i\(s\)_firmware
na
hikvision•ds-2cd2712f-i\(s\)_firmware
na
hikvision•ds-2cd2732f-i\(s\)_firmware
na
hikvision•ds-2cd2t32-i3_firmware
na
hikvision•ds-2cd2t32-i5_firmware
na
hikvision•ds-2cd2t32-i8_firmware
na
hikvision•ds-2cd4012f-\(a\)_firmware
na
hikvision•ds-2cd4012f-\(p\)_firmware
na
hikvision•ds-2cd4012f-\(w\)_firmware
na
hikvision•ds-2cd4012fwd-\(a\)_firmware
na
hikvision•ds-2cd4012fwd-\(p\)_firmware
na
hikvision•ds-2cd4012fwd-\(w\)_firmware
na
hikvision•ds-2cd4024f-\(a\)_firmware
na
hikvision•ds-2cd4024f-\(p\)_firmware
na
hikvision•ds-2cd4024f-\(w\)_firmware
na
hikvision•ds-2cd4032fwd-\(a\)_firmware
na
hikvision•ds-2cd4032fwd-\(p\)_firmware
na
hikvision•ds-2cd4032fwd-\(w\)_firmware
na
hikvision•ds-2cd4112f-i\(z\)_firmware
na
hikvision•ds-2cd4112fwd-i\(z\)_firmware
na
hikvision•ds-2cd4124f-i\(z\)_firmware
na
hikvision•ds-2cd4132fwd-i\(z\)_firmware
na
hikvision•ds-2cd4212f-i\(h\)_firmware
na
hikvision•ds-2cd4212f-i\(s\)_firmware
na
hikvision•ds-2cd4212f-i\(z\)_firmware
na
hikvision•ds-2cd4212fwd-i\(h\)_firmware
na
hikvision•ds-2cd4212fwd-i\(s\)_firmware
na
hikvision•ds-2cd4212fwd-i\(z\)_firmware
na
hikvision•ds-2cd4224f-i\(h\)_firmware
na
hikvision•ds-2cd4224f-i\(s\)_firmware
na
hikvision•ds-2cd4224f-i\(z\)_firmware
na
hikvision•ds-2cd4232fwd-i\(h\)_firmware
na
hikvision•ds-2cd4232fwd-i\(s\)_firmware
na
hikvision•ds-2cd4232fwd-i\(z\)_firmware
na
hikvision•ds-2cd4312f-i\(h\)_firmware
na
hikvision•ds-2cd4312f-i\(s\)_firmware
na
hikvision•ds-2cd4312f-i\(z\)_firmware
na
hikvision•ds-2cd4324f-i\(h\)_firmware
na

Showing first 50 affected entries in server-rendered view.