Lucene search
PRIOn knowledge basePRION:CVE-2017-6342HistoryFeb 27, 2017 - 7:59 a.m.
Design/Logic Flaw
2017-02-2707:59:00
PRIOn knowledge base
www.prio-n.com
2
An issue was discovered on Dahua DHI-HCVR7216A-S3 devices with NVR Firmware 3.210.0001.10 2016-06-06, Camera Firmware 2.400.0000.28.R 2016-03-29, and SmartPSS Software 1.16.1 2017-01-19. When SmartPSS Software is launched, while on the login screen, the software in the background automatically logs in as admin. This allows sniffing sensitive information identified in CVE-2017-6341 without prior knowledge of the password. This is a different vulnerability than CVE-2013-6117.
| CPE | Name | Operator | Version |
|---|---|---|---|
| camera_firmware | eq | 2.400.28114 | |
| nvr_firmware | eq | 3.210.0001.10 | |
| smartpss_firmware | eq | 1.16.1 |
Related
cve
cve
cvelist
cvelist
nvd
nvd
prion
prion
Security feature bypass
2017-02-27 07:59:00
Authentication flaw
2014-07-11 19:55:00
Design/Logic Flaw
2017-02-27 07:59:00
metasploit
metasploit
Dahua DVR Auth Bypass Scanner
2015-12-03 23:15:48
zdt
zdt
Dahua DVR 2.608.0000.0 and 2.608.GV00.0 - Authentication Bypass
2013-11-19 00:00:00
openvas
openvas
Dahua Devices Authentication Bypass Vulnerability
2017-03-14 00:00:00
seebug
seebug
Dahua DVR 2.608.0000.0 and 2.608.GV00.0 - Authentication Bypass
2014-07-01 00:00:00
exploitpack
exploitpack
Dahua DVR 2.608.0000.02.608.GV00.0 - Authentication Bypass (Metasploit)
2013-11-18 00:00:00
securityvulns
securityvulns
Dahua DVR authentication bypass
2013-11-18 00:00:00
Dahua DVR Authentication Bypass - CVE-2013-6117
2013-11-18 00:00:00
exploitdb
exploitdb
Dahua DVR 2.608.0000.0/2.608.GV00.0 - Authentication Bypass (Metasploit)
2013-11-18 00:00:00