Ds-2td2617-3-v1 thermal camera - known exploits?

[daveqrj]

I have this camera: DS-2TD2617-3/V1

Software V5.5.18 build 191212

It is connected with pOE and added to the HIK Vision app, are there any security concerns I should take?

Are there any known exploits of the device, and if yes, what to do?

Any settings on the camera that are critical and that should configure in a specific way?

Right now things are set up with default settings..

 

[trempa92]

Its an older model which dates before 2021-06' RCE exploit, therefore it could be subject to that exploit.

Do not put it online via port opening. Also put in separate network vlan if a lot of people uses same network.

You may try firmware updating to Firmware_V5.5.22_210702, but i dont believe this have fix for RCE. The fix update was disclosed later

 

[daveqrj]

Thanks a lot for your reply!

Should I have any concerns if I just connect it to my router with a LAN cable and use the HIK mobile app to access it?

It is only our household that has access to the WiFi on that router.

 

[looney2ns]

How to Secure Your Network (Don't Get Hacked!)

Many camera networks are unsecure, even those installed by professionals. This guide gives basic instruction in how to secure a camera network from the most common types of attacks. Perhaps the most important rule of securing a computer network is to not forward ports to unsecure services...

ipcamtalk.com

 

[daveqrj]

How to Secure Your Network (Don't Get Hacked!)

Many camera networks are unsecure, even those installed by professionals. This guide gives basic instruction in how to secure a camera network from the most common types of attacks. Perhaps the most important rule of securing a computer network is to not forward ports to unsecure services...

ipcamtalk.com

Thanks a lot for that useful information!

However, it does not answer my questions above. Would you be able to comment on them? Thanks so far!