The way they are watching you: Exploiting the Surveillance System and its supply chain

With the development of artificial intelligence and image processing technology, the video industry such as CCTV is developing greatly. However, CCTV video may infringe on an individual's privacy, and personal information may be leaked due to hacking or illegal video collection. As such, problems such as invasion of privacy and leakage of personal information are also increasing, the importance of the video surveillance industry is becoming more prominent.

In order to prevent hacking or illegal video collection, research on camera security is being conducted. However, there is a lack of awareness of NVR (Network Video Recorder), a device that actually watches videos recorded by cameras, and research on this is also insufficient.

We selected Hikvision and Dahua, which have a high NVR market share, as target vendors, and also selected Synology's NVR-related package, Surveillance Station, as targets. Before proceeding with vulnerability analysis, several problems occurred during the file system extraction process, but U-Boot mitigation was successfully bypassed through Side Channel Attack and Command Injection. Afterwards, various types of vulnerabilities were discovered through analysis, and OEM verification was also conducted to increase impact.We present exploit scenarios for surveillance devices through vulnerability linkage and present supply chain security issues in the Surveillance System.