- Messages
- 5,170
- Points
- 113
Hikvision have today publicly declared a vulnerability with some NVR models and released new firmware to fix the issue.
A detailed statement can be found here:
Security Vulnerabilities in Hikvision NVR Devices
The new V5.2.006 [240328] firmware can be downloaded from our use-IP Google Drive here (93.1MB):
Google Drive - Virus scan warning
{Testing this e.g. keeping a copy on OUR Google Drive; Pros - we retain a copy of all historic versions; Cons - the virus warning that Google add makes it seem untrustworthy. Surprisingly, the file download seems no faster than direct from Hikvision}
Or from Hikvision's product page for an affected NVR here (scroll to the very bottom):
CVE-2024-29949 - Affected Versions and Fixes:
Versions after V5.00.000 (including V5.00.000) and before V5.02.006(not including V5.02.006)
DS-76xxNI-Mx
DS-77xxNI-Mx
DS-96xxxNI-Mxx
DS-76xxNXI-Ix
DS-77xxNXI-Ix
DS-86xxNXI-Ix
DS-96xxNXI-Ix
iDS-76xxNXI-Mx
iDS-77xxNXI-Mx
iDS-96xxxMXI-Mxx
Versions after V5.00.000 (including V5.00.000) and before V5.01.070(not including V5.01.070)
DS-7604NI-M1/4P
Hikvision recommends users set up complex device passwords to mitigate the possibility of the above vulnerabilities being exploited.
The declaration lists a couple of other 7604 models as being affected @Dan is in contact with Hikvision UK Tech Support to track down links for the new firmware for those models.
A detailed statement can be found here:
Security Vulnerabilities in Hikvision NVR Devices
The new V5.2.006 [240328] firmware can be downloaded from our use-IP Google Drive here (93.1MB):
Google Drive - Virus scan warning
{Testing this e.g. keeping a copy on OUR Google Drive; Pros - we retain a copy of all historic versions; Cons - the virus warning that Google add makes it seem untrustworthy. Surprisingly, the file download seems no faster than direct from Hikvision}
Or from Hikvision's product page for an affected NVR here (scroll to the very bottom):
CVE-2024-29949 - Affected Versions and Fixes:
Versions after V5.00.000 (including V5.00.000) and before V5.02.006(not including V5.02.006)
DS-76xxNI-Mx
DS-77xxNI-Mx
DS-96xxxNI-Mxx
DS-76xxNXI-Ix
DS-77xxNXI-Ix
DS-86xxNXI-Ix
DS-96xxNXI-Ix
iDS-76xxNXI-Mx
iDS-77xxNXI-Mx
iDS-96xxxMXI-Mxx
Versions after V5.00.000 (including V5.00.000) and before V5.01.070(not including V5.01.070)
DS-7604NI-M1/4P
Hikvision recommends users set up complex device passwords to mitigate the possibility of the above vulnerabilities being exploited.
The declaration lists a couple of other 7604 models as being affected @Dan is in contact with Hikvision UK Tech Support to track down links for the new firmware for those models.
Last edited: