Skip to main content
CVE-2013-3613 HIGH POC THREAT Act Now

Dahua DVR appliances do not properly restrict UPnP requests, which makes it easier for remote attackers to obtain access via vectors involving a replay attack against the TELNET port. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 12.0%.

Dahua Authentication Bypass Dvr0404Hd A Dvr0404Hd L Dvr0404Hd S +62
NVD Exploit-DB
CVSS 2.0
7.8
EPSS
12.0%
CVE-2013-3615 HIGH POC This Week

Dahua DVR appliances use a password-hash algorithm with a short hash length, which makes it easier for context-dependent attackers to discover cleartext passwords via a brute-force attack. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Dahua Authentication Bypass Dvr0404Hd A Dvr0404Hd L Dvr0404Hd S +62
NVD Exploit-DB
CVSS 2.0
7.8
EPSS
8.6%
CVE-2013-5709 HIGH This Week

The authentication implementation in the web server on Siemens SCALANCE X-200 switches with firmware before 5.0.0 does not use a sufficient source of entropy for generating values of random numbers,. Rated high severity (CVSS 8.3), this vulnerability is remotely exploitable. No vendor patch available.

Siemens Information Disclosure Scalance X 200 Series Firmware Scalance X 200 Scalance X 200Rna +6
NVD
CVSS 2.0
8.3
EPSS
0.5%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy