Lucene search
K

12 matches found

NVD
NVD
added 2026/06/10 7:16 a.m.16 views

CVE-2026-29115

A vulnerability has been found in some Dahua products could allow an authenticated remote attacker to send a specially crafted packet, triggering an exception that causes the system to reboot unexpectedly, resulting in a denial of service...

6.9CVSS0.00362EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/18 12:0 a.m.13 views

PT-2026-26031

A vulnerability found in Dahua NVR/XVR device. A third-party malicious attacker with physical access to the device may gain access to a restricted shell via the serial port, and bypasses the shell's authentication mechanism to escalate privileges...

2.4CVSS5.8AI score0.00231EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-18251

Malware in sbrugna...

6.5CVSS6.6AI score0.01893EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 9:46 p.m.13 views

CVE-2022-45434

Some Dahua software products have a vulnerability of unauthenticated un-throttled ICMP requests on remote DSS Server. After bypassing the firewall access control policy, by sending a specific crafted packet to the vulnerable interface, an attacker could exploit the victim server to launch ICMP...

5.9CVSS7.1AI score0.00661EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/05 1:0 a.m.20 views

CVE-2024-13130 Dahua IPC-HFW1200S Web Interface Sha1Account1 path traversal

A vulnerability was found in Dahua IPC-HFW1200S, IPC-HFW2300R-Z, IPC-HFW5220E-Z and IPC-HDW1200S up to 20241222. It has been rated as problematic. Affected by this issue is some unknown functionality of the file ../mtd/Config/Sha1Account1 of the component Web Interface. The manipulation leads to...

5.3CVSS4.6AI score0.00557EPSS
Exploits0References4
OSV
OSV
added 2024/07/31 4:15 a.m.1 views

CVE-2024-39947

A vulnerability has been found in Dahua products.After obtaining the ordinary user's username and password, the attacker can send a carefully crafted data packet to the interface with vulnerabilities, causing the device to crash...

6.5CVSS5.7AI score0.00458EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/07/31 12:0 a.m.3 views

Dahua NVR 安全漏洞

Dahua NVR is a series of network video recorders from Dahua China. A security vulnerability exists in the Dahua NVR4XXX. An attacker can send a carefully constructed packet to the vulnerable interface, causing the device to crash...

7.5CVSS6.7AI score0.0056EPSS
Exploits0References2
OSV
OSV
added 2022/12/27 6:15 p.m.8 views

CVE-2022-45431

Some Dahua software products have a vulnerability of unauthenticated restart of remote DSS Server. After bypassing the firewall access control policy, by sending a specific crafted packet to the vulnerable interface, an attacker could unauthenticated restart of remote DSS Server...

7.5CVSS5.8AI score0.00642EPSS
Exploits0References1
OSV
OSV
added 2022/12/27 6:15 p.m.7 views

CVE-2022-45434

Some Dahua software products have a vulnerability of unauthenticated un-throttled ICMP requests on remote DSS Server. After bypassing the firewall access control policy, by sending a specific crafted packet to the vulnerable interface, an attacker could exploit the victim server to launch ICMP...

5.9CVSS5.7AI score0.00661EPSS
Exploits0References1
OSV
OSV
added 2022/12/27 6:15 p.m.3 views

CVE-2022-45432

Some Dahua software products have a vulnerability of unauthenticated search for devices. After bypassing the firewall access control policy, by sending a specific crafted packet to the vulnerable interface, an attacker could unauthenticated search for devices in range of IPs from remote DSS Serve...

5.3CVSS5.7AI score0.00699EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/12/27 12:0 a.m.8 views

PT-2022-27507 · Dahua · Dahua

Name of the Vulnerable Software and Affected Versions: Dahua software products affected versions not specified Description: The issue allows an attacker to obtain the AES crypto key by sending a specific crafted packet to the vulnerable interface. This is due to a vulnerability of unauthenticated...

5.3CVSS5.1AI score0.00679EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/12/27 12:0 a.m.3 views

Dahua software products 访问控制错误漏洞

Dahua software products are a family of applications from the Chinese company Dahua. A security vulnerability exists in several Dahua software products that stems from their unauthenticated MQTT credential requests that allow an attacker to obtain encrypted MQTT credentials which cannot be direct...

7.5CVSS7.3AI score0.00572EPSS
Exploits0References2
Rows per page
Query Builder