Your RSA-2048 keys break in 2030. Find every one of them before attackers do.
CISA KEV·Added 2026-03-05 — agencies required to remediate by 2026-03-26

CVE-2017-7921

CRITICAL

An Improper Authentication issue was discovered in Hikvision DS-2CD2xx2F-I Series V5.2.0 build 140721 to V5.4.0 build 160530, DS-2CD2xx0F-I Series V5.2.0 build 140721 to V5.4.0 Build…

Published
May 6, 2017
Updated
Apr 22, 2026
Affected
0 pkgs
Patched
None yet
Exploits
20 known

EPSS Exploitation Probability

via FIRST.org ↗
94.2%probability of exploitation in next 30 days
Very High Risk100th percentile0.00%
93.6%94.0%94.4%94.7%94.1%94.2%Dec 25Apr 26Jun 26

EPSS (Exploit Prediction Scoring System) is a daily probability model maintained by FIRST.org. It estimates the likelihood a CVE will be exploited in production environments within the next 30 days, derived from real-world threat intelligence signals.

Description

An Improper Authentication issue was discovered in Hikvision DS-2CD2xx2F-I Series V5.2.0 build 140721 to V5.4.0 build 160530, DS-2CD2xx0F-I Series V5.2.0 build 140721 to V5.4.0 Build 160401, DS-2CD2xx2FWD Series V5.3.1 build 150410 to V5.4.4 Build 161125, DS-2CD4x2xFWD Series V5.2.0 build 140721 to V5.4.0 Build 160414, DS-2CD4xx5 Series V5.2.0 build 140721 to V5.4.0 Build 160421, DS-2DFx Series V5.2.0 build 140805 to V5.4.5 Build 160928, and DS-2CD63xx Series V5.0.9 build 140305 to V5.3.5 Build 160106 devices. The improper authentication vulnerability occurs when an application does not adequately or correctly authenticate users. This may allow a malicious user to escalate his or her privileges on the system and gain access to sensitive information.

Affected Products

58 products · 58 configurations
OS
ds-2cd2t32-i3 firmwarehikvision
all
OS
ds-2cd2t32-i5 firmwarehikvision
all
OS
ds-2cd2t32-i8 firmwarehikvision
all
OS
ds-2cd63xx series firmwarehikvision
all
OS
ds-2cd2032-i firmwarehikvision
all
OS
ds-2cd2112-i firmwarehikvision
all
Exploits & PoCs
20

Research use only. For defensive security, authorized penetration testing, and academic research only. Never execute exploit code against systems without explicit written authorization.

An Improper Authentication issue was discovered in Hikvision DS-2CD2xx2F…

github.comGithubApr 2020

An Improper Authentication issue was discovered in Hikvision DS-2CD2xx2F…

github.comGithubNov 2020

An Improper Authentication issue was discovered in Hikvision DS-2CD2xx2F…

github.comGithubJan 2021

An Improper Authentication issue was discovered in Hikvision DS-2CD2xx2F…

github.comGithubNov 2020

An Improper Authentication issue was discovered in Hikvision DS-2CD2xx2F…

github.comMetasploitSep 2022

An Improper Authentication issue was discovered in Hikvision DS-2CD2xx2F…

github.comMetasploitOct 2022

An Improper Authentication issue was discovered in Hikvision DS-2CD2xx2F…

github.comGithubJul 2022

An Improper Authentication issue was discovered in Hikvision DS-2CD2xx2F…

github.comGithubJul 2023

An Improper Authentication issue was discovered in Hikvision DS-2CD2xx2F…

github.comGithubJul 2024

An Improper Authentication issue was discovered in Hikvision DS-2CD2xx2F…

github.comGithubFeb 2024

Frequently Asked Questions

An Improper Authentication issue was discovered in Hikvision DS-2CD2xx2F-I Series V5.2.0 build 140721 to V5.4.0 build 160530, DS-2CD2xx0F-I Series V5.2.0 build 140721 to V5.4.0 Build 160401, DS-2CD2xx2FWD Series V5.3.1 build 150410 to V5.4.4 Build 161125, DS-2CD4x2xFWD Series V5.2.0 build 140721 to V5.4.0 Build 160414, DS-2CD4xx5 Series V5.2.0 build 140721 to V5.4.0 Build 160421, DS-2DFx Series V5.2.0 build 140805 to V5.4.5 Build 160928, and DS-2CD63xx Series V5.0.9 build 140305 to V5.3.5 Build 160106 devices. The improper authentication vulnerability occurs when an application does not adequa
O3 Security · Impact-Aware SCA

Is CVE-2017-7921 in your stack?

O3 detects CVE-2017-7921 across dependencies and uses function-level reachability to confirm whether the vulnerable code path is actually reachable — not just present. No false positives.

Scan my stack How O3 SCA works