Lucene search
K

18 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2019-19042

Malware in sbrugna...

7.8CVSS7.7AI score0.00448EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-16284

Malware in sbrugna...

9CVSS8.8AI score0.02296EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/05/22 10:22 a.m.6 views

CVE-2019-9676

Buffer overflow vulnerability found in some Dahua IP Camera devices IPC-HFW1XXX,IPC-HDW1XXX,IPC-HFW2XXX Build before 2018/11. The vulnerability exits in the function of redirection display for serial port printing information, which can not be used by product basic functions. After an attacker lo...

7.8CVSS8.1AI score0.00448EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2024/08/24 7:3 a.m.73 views

CISA Urges Federal Agencies to Patch Versa Director Vulnerability by September

The U.S. Cybersecurity and Infrastructure Security Agency CISA has placed a security flaw impacting Versa Director to its Known Exploited Vulnerabilities KEV catalog based on evidence of active exploitation. The medium-severity vulnerability, tracked as CVE-2024-39717 CVSS score: 6.6, is case of...

10CVSS9.7AI score0.99871EPSS
Exploits28
CISA
CISA
added 2024/08/21 12:0 p.m.21 views

CISA Adds Four Known Exploited Vulnerabilities to Catalog

CISA has added four new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2021-33044link is external Dahua IP Camera Authentication Bypass Vulnerability CVE-2021-33045link is external Dahua IP Camera Authentication Bypass Vulnerability...

10CVSS7.9AI score0.99871EPSS
In wildExploits27References9
Positive Technologies
Positive Technologies
added 2021/09/07 12:0 a.m.3 views

PT-2021-20027

Name of the Vulnerable Software and Affected Versions Dahua IP Camera firmware versions prior to 2.820.0000000.5.r.210705 Description The issue is related to an identity authentication bypass during the login process. Attackers can construct malicious data packets to bypass device identity...

10CVSS7.9AI score0.99871EPSS
Exploits12References37
Positive Technologies
Positive Technologies
added 2021/09/07 12:0 a.m.6 views

PT-2021-20028

Name of the Vulnerable Software and Affected Versions Dahua IP Camera firmware versions 2.820.0000000.5.r.210705 Description The issue is related to an identity authentication bypass during the login process. Attackers can construct malicious data packets to bypass device identity authentication...

10CVSS7.9AI score0.99556EPSS
Exploits9References28
Prion
Prion
added 2019/06/12 3:29 p.m.10 views

Buffer overflow

Buffer overflow vulnerability found in some Dahua IP Camera devices IPC-HFW1XXX,IPC-HDW1XXX,IPC-HFW2XXX Build before 2018/11. The vulnerability exits in the function of redirection display for serial port printing information, which can not be used by product basic functions. After an attacker lo...

7.2CVSS8.1AI score0.00448EPSS
Exploits0References1Affected Software3
NVD
NVD
added 2019/06/12 3:29 p.m.10 views

CVE-2019-9676

Buffer overflow vulnerability found in some Dahua IP Camera devices IPC-HFW1XXX,IPC-HDW1XXX,IPC-HFW2XXX Build before 2018/11. The vulnerability exits in the function of redirection display for serial port printing information, which can not be used by product basic functions. After an attacker lo...

7.8CVSS8.1AI score0.00448EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/06/12 2:12 p.m.17 views

CVE-2019-9676

Buffer overflow vulnerability found in some Dahua IP Camera devices IPC-HFW1XXX,IPC-HDW1XXX,IPC-HFW2XXX Build before 2018/11. The vulnerability exits in the function of redirection display for serial port printing information, which can not be used by product basic functions. After an attacker lo...

8.1AI score0.00448EPSS
Exploits0References1
Prion
Prion
added 2018/07/24 3:29 p.m.14 views

Stack overflow

Dahua IP camera products using firmware versions prior to V2.400.0000.14.R.20170713 include a version of the Sonia web interface that may be vulnerable to a stack buffer overflow. Dahua IP camera products include an application known as Sonia /usr/bin/sonia that provides the web interface and oth...

7.5CVSS9.8AI score0.05286EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2018/07/24 3:29 p.m.15 views

CVE-2017-3223

Dahua IP camera products using firmware versions prior to V2.400.0000.14.R.20170713 include a version of the Sonia web interface that may be vulnerable to a stack buffer overflow. Dahua IP camera products include an application known as Sonia /usr/bin/sonia that provides the web interface and oth...

9.8CVSS9.9AI score0.05286EPSS
Exploits0References2
EUVD
EUVD
added 2018/07/24 3:0 p.m.6 views

EUVD-2017-12344

Dahua IP camera products using firmware versions prior to V2.400.0000.14.R.20170713 include a version of the Sonia web interface that may be vulnerable to a stack buffer overflow. Dahua IP camera products include an application known as Sonia /usr/bin/sonia that provides the web interface and oth...

9.8CVSS9.9AI score0.05286EPSS
Exploits0References2
Prion
Prion
added 2017/11/28 7:29 p.m.19 views

Design/Logic Flaw

Customer of Dahua IP camera or IP PTZ could submit relevant device information to receive a time limited temporary password from Dahua authorized dealer to reset the admin password. The algorithm used in this mechanism is potentially at risk of being compromised and subsequently utilized by...

5CVSS6.9AI score0.01443EPSS
Exploits0References1
CNVD
CNVD
added 2017/04/01 12:0 a.m.3 views

Multiple Vulnerabilities in Dahua IP Camera

Dahua IP Camera is a webcam from Dahua, China. An elevation of privilege and information disclosure vulnerability exists in Dahua IP Camera version 3.200.0001.6. An attacker can exploit this vulnerability by sending a specially crafted request to log into the IP Camera and gain full control of th...

9CVSS6.8AI score0.02296EPSS
Exploits1References1
OSV
OSV
added 2017/03/30 6:59 p.m.3 views

CVE-2017-7253

Dahua IP Camera devices 3.200.0001.6 can be exploited via these steps: 1. Use the default low-privilege credentials to list all users via a request to a certain URI. 2. Login to the IP camera with admin credentials so as to obtain full control of the target IP camera. During exploitation, the fir...

8.8CVSS5.8AI score0.02296EPSS
Exploits1References2
NVD
NVD
added 2017/03/30 6:59 p.m.13 views

CVE-2017-7253

Dahua IP Camera devices 3.200.0001.6 can be exploited via these steps: 1. Use the default low-privilege credentials to list all users via a request to a certain URI. 2. Login to the IP camera with admin credentials so as to obtain full control of the target IP camera. During exploitation, the fir...

9CVSS8.7AI score0.02296EPSS
Exploits1References2
Prion
Prion
added 2017/03/30 6:59 p.m.13 views

Design/Logic Flaw

Dahua IP Camera devices 3.200.0001.6 can be exploited via these steps: 1. Use the default low-privilege credentials to list all users via a request to a certain URI. 2. Login to the IP camera with admin credentials so as to obtain full control of the target IP camera. During exploitation, the fir...

9CVSS8.6AI score0.02296EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder