Ds-2td2617-3-v1 thermal camera - known exploits?

D

daveqrj

n3wb
Jan 10, 2025
15
0
Mars
I have this camera: DS-2TD2617-3/V1

Software V5.5.18 build 191212

It is connected with pOE and added to the HIK Vision app, are there any security concerns I should take?

Are there any known exploits of the device, and if yes, what to do?

Any settings on the camera that are critical and that should configure in a specific way?

Right now things are set up with default settings..
 
Its an older model which dates before 2021-06' RCE exploit, therefore it could be subject to that exploit.

Do not put it online via port opening. Also put in separate network vlan if a lot of people uses same network.

You may try firmware updating to Firmware_V5.5.22_210702, but i dont believe this have fix for RCE. The fix update was disclosed later
 
  • Like
Reactions: alastairstevenson
Thanks a lot for your reply!

Should I have any concerns if I just connect it to my router with a LAN cable and use the HIK mobile app to access it?

It is only our household that has access to the WiFi on that router.
 
looney2ns said:

How to Secure Your Network (Don't Get Hacked!)

Many camera networks are unsecure, even those installed by professionals. This guide gives basic instruction in how to secure a camera network from the most common types of attacks. Perhaps the most important rule of securing a computer network is to not forward ports to unsecure services...
ipcamtalk.com ipcamtalk.com
Click to expand...

Thanks a lot for that useful information!

However, it does not answer my questions above. Would you be able to comment on them? Thanks so far!
 
There is no known hikconnect exploit at the moment. So going via their cloud should be safe from internet side, but as ive stated it is exploitable within your lan.

So whoever gets to your lan, or your PC gets virus, it could use camera for accessing everyhting.
 
You must log in or register to reply here.
Top Bottom