Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/08/30 6:16 p.m.5 views

CVE-2024-13985

A command injection vulnerability in Dahua EIMS versions prior to 2240008 allows unauthenticated remote attackers to execute arbitrary system commands via the capturehandle.action interface. The flaw stems from improper input validation in the captureCommand parameter, which is processed without...

10CVSS8.3AI score0.07651EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/27 9:23 p.m.12 views

CVE-2024-13985 Dahua EIMS capture_handle.action RCE

A command injection vulnerability in Dahua EIMS versions prior to 2240008 allows unauthenticated remote attackers to execute arbitrary system commands via the capturehandle.action interface. The flaw stems from improper input validation in the captureCommand parameter, which is processed without...

10CVSS0.07651EPSS
Exploits0References8
CVE
CVE
added 2025/08/27 9:23 p.m.25 views

CVE-2024-13985

CVE-2024-13985 – Dahua EIMS : A command injection flaw affects Dahua EIMS versions prior to 2240008. The issue stems from improper input validation of the captureCommand parameter in the capture_handle.action API, allowing unauthenticated remote attackers to inject OS commands and potentially ful...

10CVSS7.8AI score0.07651EPSS
In wildExploits0References8
VulnCheck KEV
VulnCheck KEV
added 2024/04/06 12:0 a.m.4 views

VulnCheck KEV: CVE-2024-13985

A command injection vulnerability in Dahua EIMS versions prior to 2240008 allows unauthenticated remote attackers to execute arbitrary system commands via the capturehandle.action interface. The flaw stems from improper input validation in the captureCommand parameter, which is processed without...

10CVSS6.1AI score0.07651EPSS
Exploits0References1
Rows per page
Query Builder