Skip to main content

Dahua

57 CVEs vendor

Monthly

CVE-2026-29116 HIGH This Week

Remote denial-of-service in multiple Dahua video surveillance product lines (IPC, SD, NVR, XVR, EVS, VTO, VTH, ASI, TPC) allows unauthenticated network attackers to send a specially crafted packet that triggers an unhandled exception (CWE-617), forcing the device into an unexpected reboot. The CVSS 4.0 score of 8.7 reflects high availability impact with no required privileges or user interaction, and no public exploit identified at time of analysis.

Denial Of Service Dahua
NVD VulDB
CVSS 4.0
8.7
EPSS
0.1%
CVE-2026-29115 MEDIUM This Month

Denial of service in Dahua IPC and SD (Speed Dome) camera devices allows an authenticated remote attacker to trigger an unexpected system reboot by sending a specially crafted network packet. The vulnerability is vendor-reported under advisory DHCC-SA-202606-001 and affects specific IPC and SD models with firmware built before March 26, 2026. No public exploit code has been identified at time of analysis, and the attack requires high-privilege authentication (PR:H), materially limiting the realistic attacker population.

Denial Of Service Dahua
NVD VulDB
CVSS 4.0
6.9
EPSS
0.1%
CVE-2026-29114 LOW Monitor

CA root certificate exposure in Dahua IPC devices allows unauthenticated network-based attackers, under specific prerequisite conditions, to retrieve the device's internal CA root certificate. If the obtained certificate is installed and trusted on client systems, the attacker could leverage it to issue fraudulent certificates recognized as valid by those clients, collapsing the integrity of affected certificate trust chains. No active exploitation has been confirmed (not in CISA KEV), no public exploit code has been identified, and the CVSS 4.0 score of 2.3 reflects the multi-step, user-dependent nature of the full attack chain.

Information Disclosure Dahua
NVD
CVSS 4.0
2.3
EPSS
0.0%
CVE-2025-31703 LOW Monitor

This vulnerability in Dahua NVR/XVR devices allows unauthenticated privilege escalation through the serial port console by bypassing shell authentication mechanisms. Affected devices include Dahua NVR2-4KS3, XVR4232AN-I/T, and XVR1B16H-I/T models with build dates prior to March 3, 2026. An attacker with physical access to the device can gain a restricted shell and escalate privileges to access sensitive system functions, though the CVSS 2.4 score reflects the requirement for physical proximity and lack of data availability impact.

Dahua Privilege Escalation Authentication Bypass
NVD VulDB
CVSS 4.0
2.4
EPSS
0.0%
CVE-2024-13985 CRITICAL This Week

A command injection vulnerability in Dahua EIMS versions prior to 2240008 allows unauthenticated remote attackers to execute arbitrary system commands via the capture_handle.action interface. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Dahua Command Injection
NVD GitHub
CVSS 4.0
10.0
EPSS
0.3%
CVE-2023-7309 CRITICAL Act Now

A path traversal vulnerability exists in the Dahua Smart Park Integrated Management Platform (also referred to as the Dahua Smart Campus Integrated Management Platform), affecting the SOAP-based GIS. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Dahua RCE Path Traversal
NVD GitHub
CVSS 4.0
10.0
EPSS
1.2%
CVE-2024-13130 MEDIUM This Month

A vulnerability was found in Dahua IPC-HFW1200S, IPC-HFW2300R-Z, IPC-HFW5220E-Z and IPC-HDW1200S up to 20241222. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Dahua Path Traversal
NVD VulDB
CVSS 4.0
5.3
EPSS
0.2%
CVE-2024-39950 CRITICAL Act Now

A vulnerability has been found in Dahua products. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Stack Overflow Dahua Nvr4104 4Ks2 L Firmware Nvr4108 4Ks2 L Firmware +56
NVD
CVSS 3.1
9.8
EPSS
0.5%
CVE-2024-39949 HIGH This Week

A vulnerability has been found in Dahua products. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Dahua Nvr4104 4Ks2 L Firmware Nvr4108 4Ks2 L Firmware Nvr4116 4Ks2 L Firmware +53
NVD
CVSS 3.1
7.5
EPSS
0.6%
CVE-2024-39948 HIGH This Week

A vulnerability has been found in Dahua products. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Null Pointer Dereference Denial Of Service Dahua Nvr4104 4Ks2 L Firmware Nvr4108 4Ks2 L Firmware +54
NVD
CVSS 3.1
7.5
EPSS
0.6%
CVE-2024-39947 MEDIUM This Month

A vulnerability has been found in Dahua products.After obtaining the ordinary user's username and password, the attacker can send a carefully crafted data packet to the interface with. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Dahua Nvr4104 4Ks2 L Firmware Nvr4108 4Ks2 L Firmware Nvr4116 4Ks2 L Firmware +53
NVD
CVSS 3.1
6.5
EPSS
0.5%
CVE-2024-39946 HIGH This Week

A vulnerability has been found in Dahua products.After obtaining the administrator's username and password, the attacker can send a carefully crafted data packet to the interface with. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Dahua Nvr4104 4Ks2 L Firmware Nvr4108 4Ks2 L Firmware Nvr4116 4Ks2 L Firmware +53
NVD
CVSS 3.1
7.2
EPSS
0.4%
CVE-2024-39945 MEDIUM This Month

A vulnerability has been found in Dahua products. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Dahua Nvr4104 4Ks2 L Firmware Nvr4108 4Ks2 L Firmware Nvr4116 4Ks2 L Firmware +53
NVD
CVSS 3.1
4.9
EPSS
0.5%
CVE-2024-39944 HIGH This Week

A vulnerability has been found in Dahua products.Attackers can send carefully crafted data packets to the interface with vulnerabilities, causing the device to crash. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Dahua Nvr4104 4Ks2 L Firmware Nvr4108 4Ks2 L Firmware Nvr4116 4Ks2 L Firmware +55
NVD
CVSS 3.1
7.5
EPSS
0.6%
CVE-2023-3836 CRITICAL POC THREAT Act Now

A vulnerability classified as critical was found in Dahua Smart Park Management up to 20230713. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Dahua File Upload Smart Parking Management
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
73.5%
CVE-2023-3121 MEDIUM POC This Month

A vulnerability has been found in Dahua Smart Parking Management up to 20230528 and classified as problematic. Rated medium severity (CVSS 4.6), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Dahua SSRF Smart Parking Management
NVD GitHub VulDB
CVSS 3.1
4.6
EPSS
0.5%
CVE-2022-45434 MEDIUM PATCH This Month

Some Dahua software products have a vulnerability of unauthenticated un-throttled ICMP requests on remote DSS Server. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. This Allocation of Resources Without Limits vulnerability could allow attackers to exhaust system resources through uncontrolled allocation.

Dahua Denial Of Service Dhi Dss7016D S2 Firmware Dhi Dss7016Dr S2 Firmware Dhi Dss4004 S2 Firmware +2
NVD
CVSS 3.1
5.9
EPSS
0.7%
CVE-2022-45433 LOW PATCH Monitor

Some Dahua software products have a vulnerability of unauthenticated traceroute host from remote DSS Server. Rated low severity (CVSS 3.7), this vulnerability is remotely exploitable, no authentication required. This Missing Authentication for Critical Function vulnerability could allow attackers to access critical functionality without authentication.

Authentication Bypass Dahua Dhi Dss7016D S2 Firmware Dhi Dss7016Dr S2 Firmware Dhi Dss4004 S2 Firmware +2
NVD
CVSS 3.1
3.7
EPSS
0.6%
CVE-2022-45432 MEDIUM PATCH This Month

Some Dahua software products have a vulnerability of unauthenticated search for devices. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Missing Authentication for Critical Function vulnerability could allow attackers to access critical functionality without authentication.

Authentication Bypass Dahua Dhi Dss7016D S2 Firmware Dhi Dss7016Dr S2 Firmware Dhi Dss4004 S2 Firmware +2
NVD
CVSS 3.1
5.3
EPSS
0.7%
CVE-2022-45431 HIGH PATCH This Week

Some Dahua software products have a vulnerability of unauthenticated restart of remote DSS Server. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Authentication Bypass Dahua Dhi Dss7016D S2 Firmware Dhi Dss7016Dr S2 Firmware Dhi Dss4004 S2 Firmware +2
NVD
CVSS 3.1
7.5
EPSS
0.6%
CVE-2022-45430 LOW PATCH Monitor

Some Dahua software products have a vulnerability of unauthenticated enable or disable SSHD service. Rated low severity (CVSS 3.7), this vulnerability is remotely exploitable, no authentication required.

Authentication Bypass Dahua Dss Express Dss Professional Dhi Dss7016D S2 Firmware +2
NVD
CVSS 3.1
3.7
EPSS
0.4%
CVE-2022-45429 HIGH PATCH This Week

Some Dahua software products have a vulnerability of server-side request forgery (SSRF). Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

SSRF Dahua Dss Express Dss Professional Dhi Dss7016D S2 Firmware +2
NVD
CVSS 3.1
7.5
EPSS
0.5%
CVE-2022-45428 LOW PATCH Monitor

Some Dahua software products have a vulnerability of sensitive information leakage. Rated low severity (CVSS 2.7), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Dahua Dss Express Dss Professional Dhi Dss7016D S2 Firmware +2
NVD
CVSS 3.1
2.7
EPSS
0.7%
CVE-2022-45427 HIGH PATCH This Week

Some Dahua software products have a vulnerability of unrestricted upload of file. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. This Unrestricted File Upload vulnerability could allow attackers to upload malicious files that can be executed on the server.

Dahua File Upload Dss Express Dss Professional Dhi Dss7016D S2 Firmware +2
NVD
CVSS 3.1
7.2
EPSS
0.7%
CVE-2022-45426 MEDIUM PATCH This Month

Some Dahua software products have a vulnerability of unrestricted download of file. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Path Traversal Information Disclosure Dahua Dss Express Dss Professional +3
NVD
CVSS 3.1
6.5
EPSS
0.6%
CVE-2022-45425 HIGH PATCH This Week

Some Dahua software products have a vulnerability of using of hard-coded cryptographic key. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Use of Hard-coded Credentials vulnerability could allow attackers to gain access using credentials embedded in source code.

Authentication Bypass Dahua Dss Express Dss Professional Dhi Dss7016D S2 Firmware +2
NVD
CVSS 3.1
7.5
EPSS
0.5%
CVE-2022-45424 MEDIUM PATCH This Month

Some Dahua software products have a vulnerability of unauthenticated request of AES crypto key. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Missing Authentication for Critical Function vulnerability could allow attackers to access critical functionality without authentication.

Authentication Bypass Dahua Dss Express Dss Professional Dhi Dss7016D S2 Firmware +2
NVD
CVSS 3.1
5.3
EPSS
0.7%
CVE-2022-45423 HIGH PATCH This Week

Some Dahua software products have a vulnerability of unauthenticated request of MQTT credentials. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Missing Authentication for Critical Function vulnerability could allow attackers to access critical functionality without authentication.

Authentication Bypass Dahua Dss Express Dss Professional Dhi Dss7016D S2 Firmware +2
NVD
CVSS 3.1
7.5
EPSS
0.6%
CVE-2021-33045 CRITICAL POC KEV THREAT Act Now

The identity authentication bypass vulnerability found in some Dahua products during the login process. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Dahua Authentication Bypass Ipc Hum7Xxx Firmware Ipc Hx3Xxx Firmware Ipc Hx5Xxx Firmware +15
NVD
CVSS 3.1
9.8
EPSS
99.6%
CVE-2021-33044 CRITICAL POC KEV THREAT Act Now

The identity authentication bypass vulnerability found in some Dahua products during the login process. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Dahua Authentication Bypass Ipc Hum7Xxx Firmware Ipc Hx3Xxx Firmware Ipc Hx5Xxx Firmware +16
NVD
CVSS 3.1
9.8
EPSS
99.9%
CVE-2020-9502 CRITICAL Act Now

Some Dahua products with Build time before December 2019 have Session ID predictable vulnerabilities. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Dahua Information Disclosure Sd6Al Firmware Sd5A Firmware Sd1A Firmware +17
NVD
CVSS 3.1
9.8
EPSS
1.7%
CVE-2020-9501 MEDIUM This Month

Attackers can obtain Cloud Key information from the Dahua Web P2P control in specific ways. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Dahua Information Disclosure Web P2P
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2020-9500 MEDIUM This Month

Some products of Dahua have Denial of Service vulnerabilities. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Dahua Sd6Al Firmware Sd5A Firmware Sd1A Firmware +16
NVD
CVSS 3.1
4.9
EPSS
1.0%
CVE-2020-9499 HIGH This Week

Some Dahua products have buffer overflow vulnerabilities. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Buffer Overflow Dahua Sd6Al Firmware Sd5A Firmware Sd1A Firmware +16
NVD
CVSS 3.1
7.2
EPSS
1.5%
CVE-2019-9680 MEDIUM PATCH This Month

Some Dahua products have information leakage issues. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Dahua Information Disclosure Ipc Hdw1X2X Firmware Ipc Hfw1X2X Firmware Ipc Hdw2X2X Firmware +6
NVD
CVSS 3.1
5.3
EPSS
1.4%
CVE-2019-9679 HIGH PATCH This Week

Some of Dahua's Debug functions do not have permission separation. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. This Incorrect Default Permissions vulnerability could allow attackers to access resources due to overly permissive default settings.

Privilege Escalation Dahua Ipc Hdw1X2X Firmware Ipc Hfw1X2X Firmware Ipc Hdw2X2X Firmware +6
NVD
CVSS 3.1
8.8
EPSS
0.9%
CVE-2019-9678 HIGH PATCH This Week

Some Dahua products have the problem of denial of service during the login process. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Denial Of Service Dahua Ipc Hdw1X2X Firmware Ipc Hfw1X2X Firmware Ipc Hdw2X2X Firmware +6
NVD
CVSS 3.1
7.5
EPSS
1.0%
CVE-2019-9677 CRITICAL PATCH Act Now

The specific fields of CGI interface of some Dahua products are not strictly verified, an attacker can cause a buffer overflow by constructing malicious packets. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Buffer Copy without Size Check vulnerability could allow attackers to overflow a buffer to corrupt adjacent memory.

Buffer Overflow Dahua Ipc Hdw1X2X Firmware Ipc Hfw1X2X Firmware Ipc Hdw2X2X Firmware +6
NVD
CVSS 3.1
9.8
EPSS
1.1%
CVE-2019-9681 MEDIUM PATCH This Month

Online upgrade information in some firmware packages of Dahua products is not encrypted. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Dahua Information Disclosure Ipc Hdw1X2X Firmware Ipc Hfw1X2X Firmware Ipc Hdw2X2X Firmware +6
NVD
CVSS 3.1
5.3
EPSS
0.8%
CVE-2019-3948 HIGH POC THREAT This Week

The Amcrest IP2M-841B V2.520.AC00.18.R, Dahua IPC-XXBXX V2.622.0000000.9.R, Dahua IPC HX5X3X and HX4X3X V2.800.0000008.0.R, Dahua DH-IPC HX883X and DH-IPC-HX863X V2.622.0000000.7.R, Dahua DH-SD4XXXXX. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Dahua Ip2M 841B Firmware Dh Ipc Hx863X Dh Ipc Hx883X +9
NVD Exploit-DB
CVSS 3.0
7.5
EPSS
26.7%
CVE-2019-9676 HIGH PATCH This Week

Buffer overflow vulnerability found in some Dahua IP Camera devices IPC-HFW1XXX,IPC-HDW1XXX,IPC-HFW2XXX Build before 2018/11. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Buffer Overflow Dahua RCE Ipc Hfw1Xxx Firmware Ipc Hdw1Xxx Firmware +1
NVD
CVSS 3.0
7.8
EPSS
0.4%
CVE-2017-9315 CRITICAL Act Now

Customer of Dahua IP camera or IP PTZ could submit relevant device information to receive a time limited temporary password from Dahua authorized dealer to reset the admin password. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Dahua Ipc Hfw1Xxx Firmware Ipc Hdw1Xxx Firmware Ipc Hdbw1Xxx Firmware +22
NVD
CVSS 3.0
9.8
EPSS
0.4%
CVE-2017-9316 MEDIUM PATCH This Month

Firmware upgrade authentication bypass vulnerability was found in Dahua IPC-HDW4300S and some IP products. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required. This Improper Authentication vulnerability could allow attackers to bypass authentication mechanisms to gain unauthorized access.

RCE Authentication Bypass Dahua Nvr11Hs Firmware Ipc Hdw4300S Firmware +7
NVD
CVSS 3.0
6.5
EPSS
1.7%
CVE-2017-9314 HIGH This Week

Authentication vulnerability found in Dahua NVR models NVR50XX, NVR52XX, NVR54XX, NVR58XX with software before DH_NVR5xxx_Eng_P_V2.616.0000.0.R.20171102. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Dahua Nvr5464 16P 4Ks2 Firmware Nvr5208 8P 4Ks2 Firmware Nvr5432 16P 4Ks2 Firmware +19
NVD
CVSS 3.0
8.8
EPSS
0.4%
CVE-2017-7927 HIGH POC PATCH This Week

A Use of Password Hash Instead of Password for Authentication issue was discovered in Dahua DH-IPC-HDBW23A0RN-ZS, DH-IPC-HDBW13A0SN, DH-IPC-HDW1XXX, DH-IPC-HDW2XXX, DH-IPC-HDW4XXX, DH-IPC-HFW1XXX,. Rated high severity (CVSS 7.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Authentication Bypass Dahua Dh Ipc Hdbw23A0Rn Zs Firmware Dh Ipc Hdbw13A0Sn Firmware Dh Ipc Hdw1Xxx Firmware +12
NVD
CVSS 3.0
7.3
EPSS
1.7%
CVE-2017-7925 CRITICAL POC PATCH THREAT Act Now

A Password in Configuration File issue was discovered in Dahua DH-IPC-HDBW23A0RN-ZS, DH-IPC-HDBW13A0SN, DH-IPC-HDW1XXX, DH-IPC-HDW2XXX, DH-IPC-HDW4XXX, DH-IPC-HFW1XXX, DH-IPC-HFW2XXX, DH-IPC-HFW4XXX,. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 80.4%.

Information Disclosure Dahua Dh Ipc Hdbw23A0Rn Zs Firmware Dh Ipc Hdbw13A0Sn Firmware Dh Ipc Hdw1Xxx Firmware +12
NVD
CVSS 3.0
9.8
EPSS
80.4%
Threat
5.9
CVE-2017-7253 HIGH POC This Week

Dahua IP Camera devices 3.200.0001.6 can be exploited via these steps: 1. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Dahua Ip Camera Firmware
NVD GitHub
CVSS 3.0
8.8
EPSS
0.8%
CVE-2017-6432 HIGH This Week

An issue was discovered on Dahua DHI-HCVR7216A-S3 3.210.0001.10 build 2016-06-06 devices. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Dahua Nvr Firmware
NVD
CVSS 3.0
8.1
EPSS
0.2%
CVE-2017-6343 HIGH This Week

The web interface on Dahua DHI-HCVR7216A-S3 devices with NVR Firmware 3.210.0001.10 2016-06-06, Camera Firmware 2.400.0000.28.R 2016-03-29, and SmartPSS Software 1.16.1 2017-01-19 allows remote. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Authentication Bypass Dahua Camera Firmware Nvr Firmware Smartpss Firmware
NVD
CVSS 3.0
8.1
EPSS
2.3%
CVE-2017-6342 CRITICAL Act Now

An issue was discovered on Dahua DHI-HCVR7216A-S3 devices with NVR Firmware 3.210.0001.10 2016-06-06, Camera Firmware 2.400.0000.28.R 2016-03-29, and SmartPSS Software 1.16.1 2017-01-19. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation Dahua Camera Firmware Nvr Firmware Smartpss Firmware
NVD
CVSS 3.0
9.8
EPSS
0.4%
CVE-2017-6341 MEDIUM This Month

Dahua DHI-HCVR7216A-S3 devices with NVR Firmware 3.210.0001.10 2016-06-06, Camera Firmware 2.400.0000.28.R 2016-03-29, and SmartPSS Software 1.16.1 2017-01-19 send cleartext passwords in response to. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Dahua Camera Firmware Nvr Firmware Smartpss Firmware
NVD
CVSS 3.0
5.9
EPSS
0.5%
CVE-2013-6117 HIGH POC THREAT Act Now

Dahua DVR 2.608.0000.0 and 2.608.GV00.0 allows remote attackers to bypass authentication and obtain sensitive information including user credentials, change user passwords, clear log files, and. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 89.7%.

Dahua Authentication Bypass Dvr Firmware
NVD Exploit-DB
CVSS 2.0
7.5
EPSS
89.7%
Threat
5.7
CVE-2013-5754 CRITICAL Act Now

The authorization implementation on Dahua DVR appliances accepts a hash string representing the current date for the role of a master password, which makes it easier for remote attackers to obtain. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation Dahua Dvr0404Hd A Dvr0404Hd L Dvr0404Hd S +62
NVD
CVSS 2.0
10.0
EPSS
1.6%
CVE-2013-3615 HIGH POC This Week

Dahua DVR appliances use a password-hash algorithm with a short hash length, which makes it easier for context-dependent attackers to discover cleartext passwords via a brute-force attack. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Dahua Authentication Bypass Dvr0404Hd A Dvr0404Hd L Dvr0404Hd S +62
NVD Exploit-DB
CVSS 2.0
7.8
EPSS
8.6%
CVE-2013-3614 CRITICAL POC THREAT Emergency

Dahua DVR appliances have a small value for the maximum password length, which makes it easier for remote attackers to obtain access via a brute-force attack. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. Public exploit code available and EPSS exploitation probability 10.8%.

Privilege Escalation Dahua Dvr0404Hd A Dvr0404Hd L Dvr0404Hd S +62
NVD Exploit-DB
CVSS 2.0
9.3
EPSS
10.8%
CVE-2013-3613 HIGH POC THREAT Act Now

Dahua DVR appliances do not properly restrict UPnP requests, which makes it easier for remote attackers to obtain access via vectors involving a replay attack against the TELNET port. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 12.0%.

Dahua Authentication Bypass Dvr0404Hd A Dvr0404Hd L Dvr0404Hd S +62
NVD Exploit-DB
CVSS 2.0
7.8
EPSS
12.0%
CVE-2013-3612 CRITICAL POC THREAT Emergency

Dahua DVR appliances have a hardcoded password for (1) the root account and (2) an unspecified "backdoor" account, which makes it easier for remote attackers to obtain administrative access via. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 12.1%.

Dahua Authentication Bypass Dvr0404Hd A Dvr0404Hd L Dvr0404Hd S +62
NVD Exploit-DB
CVSS 2.0
10.0
EPSS
12.1%
EPSS 0% CVSS 8.7
HIGH This Week

Remote denial-of-service in multiple Dahua video surveillance product lines (IPC, SD, NVR, XVR, EVS, VTO, VTH, ASI, TPC) allows unauthenticated network attackers to send a specially crafted packet that triggers an unhandled exception (CWE-617), forcing the device into an unexpected reboot. The CVSS 4.0 score of 8.7 reflects high availability impact with no required privileges or user interaction, and no public exploit identified at time of analysis.

Denial Of Service Dahua
NVD VulDB
EPSS 0% CVSS 6.9
MEDIUM This Month

Denial of service in Dahua IPC and SD (Speed Dome) camera devices allows an authenticated remote attacker to trigger an unexpected system reboot by sending a specially crafted network packet. The vulnerability is vendor-reported under advisory DHCC-SA-202606-001 and affects specific IPC and SD models with firmware built before March 26, 2026. No public exploit code has been identified at time of analysis, and the attack requires high-privilege authentication (PR:H), materially limiting the realistic attacker population.

Denial Of Service Dahua
NVD VulDB
EPSS 0% CVSS 2.3
LOW Monitor

CA root certificate exposure in Dahua IPC devices allows unauthenticated network-based attackers, under specific prerequisite conditions, to retrieve the device's internal CA root certificate. If the obtained certificate is installed and trusted on client systems, the attacker could leverage it to issue fraudulent certificates recognized as valid by those clients, collapsing the integrity of affected certificate trust chains. No active exploitation has been confirmed (not in CISA KEV), no public exploit code has been identified, and the CVSS 4.0 score of 2.3 reflects the multi-step, user-dependent nature of the full attack chain.

Information Disclosure Dahua
NVD
EPSS 0% CVSS 2.4
LOW Monitor

This vulnerability in Dahua NVR/XVR devices allows unauthenticated privilege escalation through the serial port console by bypassing shell authentication mechanisms. Affected devices include Dahua NVR2-4KS3, XVR4232AN-I/T, and XVR1B16H-I/T models with build dates prior to March 3, 2026. An attacker with physical access to the device can gain a restricted shell and escalate privileges to access sensitive system functions, though the CVSS 2.4 score reflects the requirement for physical proximity and lack of data availability impact.

Dahua Privilege Escalation Authentication Bypass
NVD VulDB
EPSS 0% CVSS 10.0
CRITICAL This Week

A command injection vulnerability in Dahua EIMS versions prior to 2240008 allows unauthenticated remote attackers to execute arbitrary system commands via the capture_handle.action interface. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Dahua Command Injection
NVD GitHub
EPSS 1% CVSS 10.0
CRITICAL Act Now

A path traversal vulnerability exists in the Dahua Smart Park Integrated Management Platform (also referred to as the Dahua Smart Campus Integrated Management Platform), affecting the SOAP-based GIS. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Dahua RCE Path Traversal
NVD GitHub
EPSS 0% CVSS 5.3
MEDIUM This Month

A vulnerability was found in Dahua IPC-HFW1200S, IPC-HFW2300R-Z, IPC-HFW5220E-Z and IPC-HDW1200S up to 20241222. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Dahua Path Traversal
NVD VulDB
EPSS 0% CVSS 9.8
CRITICAL Act Now

A vulnerability has been found in Dahua products. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Stack Overflow Dahua +58
NVD
EPSS 1% CVSS 7.5
HIGH This Week

A vulnerability has been found in Dahua products. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Dahua Nvr4104 4Ks2 L Firmware +55
NVD
EPSS 1% CVSS 7.5
HIGH This Week

A vulnerability has been found in Dahua products. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Null Pointer Dereference Denial Of Service Dahua +56
NVD
EPSS 0% CVSS 6.5
MEDIUM This Month

A vulnerability has been found in Dahua products.After obtaining the ordinary user's username and password, the attacker can send a carefully crafted data packet to the interface with. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Dahua Nvr4104 4Ks2 L Firmware +55
NVD
EPSS 0% CVSS 7.2
HIGH This Week

A vulnerability has been found in Dahua products.After obtaining the administrator's username and password, the attacker can send a carefully crafted data packet to the interface with. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Dahua Nvr4104 4Ks2 L Firmware +55
NVD
EPSS 0% CVSS 4.9
MEDIUM This Month

A vulnerability has been found in Dahua products. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Dahua Nvr4104 4Ks2 L Firmware +55
NVD
EPSS 1% CVSS 7.5
HIGH This Week

A vulnerability has been found in Dahua products.Attackers can send carefully crafted data packets to the interface with vulnerabilities, causing the device to crash. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Dahua Nvr4104 4Ks2 L Firmware +57
NVD
EPSS 74% CVSS 9.8
CRITICAL POC THREAT Act Now

A vulnerability classified as critical was found in Dahua Smart Park Management up to 20230713. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Dahua File Upload Smart Parking Management
NVD GitHub VulDB
EPSS 0% CVSS 4.6
MEDIUM POC This Month

A vulnerability has been found in Dahua Smart Parking Management up to 20230528 and classified as problematic. Rated medium severity (CVSS 4.6), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Dahua SSRF Smart Parking Management
NVD GitHub VulDB
EPSS 1% CVSS 5.9
MEDIUM PATCH This Month

Some Dahua software products have a vulnerability of unauthenticated un-throttled ICMP requests on remote DSS Server. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. This Allocation of Resources Without Limits vulnerability could allow attackers to exhaust system resources through uncontrolled allocation.

Dahua Denial Of Service Dhi Dss7016D S2 Firmware +4
NVD
EPSS 1% CVSS 3.7
LOW PATCH Monitor

Some Dahua software products have a vulnerability of unauthenticated traceroute host from remote DSS Server. Rated low severity (CVSS 3.7), this vulnerability is remotely exploitable, no authentication required. This Missing Authentication for Critical Function vulnerability could allow attackers to access critical functionality without authentication.

Authentication Bypass Dahua Dhi Dss7016D S2 Firmware +4
NVD
EPSS 1% CVSS 5.3
MEDIUM PATCH This Month

Some Dahua software products have a vulnerability of unauthenticated search for devices. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Missing Authentication for Critical Function vulnerability could allow attackers to access critical functionality without authentication.

Authentication Bypass Dahua Dhi Dss7016D S2 Firmware +4
NVD
EPSS 1% CVSS 7.5
HIGH PATCH This Week

Some Dahua software products have a vulnerability of unauthenticated restart of remote DSS Server. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Authentication Bypass Dahua Dhi Dss7016D S2 Firmware +4
NVD
EPSS 0% CVSS 3.7
LOW PATCH Monitor

Some Dahua software products have a vulnerability of unauthenticated enable or disable SSHD service. Rated low severity (CVSS 3.7), this vulnerability is remotely exploitable, no authentication required.

Authentication Bypass Dahua Dss Express +4
NVD
EPSS 1% CVSS 7.5
HIGH PATCH This Week

Some Dahua software products have a vulnerability of server-side request forgery (SSRF). Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

SSRF Dahua Dss Express +4
NVD
EPSS 1% CVSS 2.7
LOW PATCH Monitor

Some Dahua software products have a vulnerability of sensitive information leakage. Rated low severity (CVSS 2.7), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Dahua Dss Express +4
NVD
EPSS 1% CVSS 7.2
HIGH PATCH This Week

Some Dahua software products have a vulnerability of unrestricted upload of file. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. This Unrestricted File Upload vulnerability could allow attackers to upload malicious files that can be executed on the server.

Dahua File Upload Dss Express +4
NVD
EPSS 1% CVSS 6.5
MEDIUM PATCH This Month

Some Dahua software products have a vulnerability of unrestricted download of file. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Path Traversal Information Disclosure Dahua +5
NVD
EPSS 1% CVSS 7.5
HIGH PATCH This Week

Some Dahua software products have a vulnerability of using of hard-coded cryptographic key. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Use of Hard-coded Credentials vulnerability could allow attackers to gain access using credentials embedded in source code.

Authentication Bypass Dahua Dss Express +4
NVD
EPSS 1% CVSS 5.3
MEDIUM PATCH This Month

Some Dahua software products have a vulnerability of unauthenticated request of AES crypto key. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Missing Authentication for Critical Function vulnerability could allow attackers to access critical functionality without authentication.

Authentication Bypass Dahua Dss Express +4
NVD
EPSS 1% CVSS 7.5
HIGH PATCH This Week

Some Dahua software products have a vulnerability of unauthenticated request of MQTT credentials. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Missing Authentication for Critical Function vulnerability could allow attackers to access critical functionality without authentication.

Authentication Bypass Dahua Dss Express +4
NVD
EPSS 100% CVSS 9.8
CRITICAL POC KEV THREAT Act Now

The identity authentication bypass vulnerability found in some Dahua products during the login process. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Dahua Authentication Bypass Ipc Hum7Xxx Firmware +17
NVD
EPSS 100% CVSS 9.8
CRITICAL POC KEV THREAT Act Now

The identity authentication bypass vulnerability found in some Dahua products during the login process. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Dahua Authentication Bypass Ipc Hum7Xxx Firmware +18
NVD
EPSS 2% CVSS 9.8
CRITICAL Act Now

Some Dahua products with Build time before December 2019 have Session ID predictable vulnerabilities. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Dahua Information Disclosure Sd6Al Firmware +19
NVD
EPSS 0% CVSS 5.5
MEDIUM This Month

Attackers can obtain Cloud Key information from the Dahua Web P2P control in specific ways. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Dahua Information Disclosure Web P2P
NVD
EPSS 1% CVSS 4.9
MEDIUM This Month

Some products of Dahua have Denial of Service vulnerabilities. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Dahua Sd6Al Firmware +18
NVD
EPSS 2% CVSS 7.2
HIGH This Week

Some Dahua products have buffer overflow vulnerabilities. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Buffer Overflow Dahua Sd6Al Firmware +18
NVD
EPSS 1% CVSS 5.3
MEDIUM PATCH This Month

Some Dahua products have information leakage issues. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Dahua Information Disclosure Ipc Hdw1X2X Firmware +8
NVD
EPSS 1% CVSS 8.8
HIGH PATCH This Week

Some of Dahua's Debug functions do not have permission separation. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. This Incorrect Default Permissions vulnerability could allow attackers to access resources due to overly permissive default settings.

Privilege Escalation Dahua Ipc Hdw1X2X Firmware +8
NVD
EPSS 1% CVSS 7.5
HIGH PATCH This Week

Some Dahua products have the problem of denial of service during the login process. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Denial Of Service Dahua Ipc Hdw1X2X Firmware +8
NVD
EPSS 1% CVSS 9.8
CRITICAL PATCH Act Now

The specific fields of CGI interface of some Dahua products are not strictly verified, an attacker can cause a buffer overflow by constructing malicious packets. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Buffer Copy without Size Check vulnerability could allow attackers to overflow a buffer to corrupt adjacent memory.

Buffer Overflow Dahua Ipc Hdw1X2X Firmware +8
NVD
EPSS 1% CVSS 5.3
MEDIUM PATCH This Month

Online upgrade information in some firmware packages of Dahua products is not encrypted. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Dahua Information Disclosure Ipc Hdw1X2X Firmware +8
NVD
EPSS 27% CVSS 7.5
HIGH POC THREAT This Week

The Amcrest IP2M-841B V2.520.AC00.18.R, Dahua IPC-XXBXX V2.622.0000000.9.R, Dahua IPC HX5X3X and HX4X3X V2.800.0000008.0.R, Dahua DH-IPC HX883X and DH-IPC-HX863X V2.622.0000000.7.R, Dahua DH-SD4XXXXX. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Dahua Ip2M 841B Firmware +11
NVD Exploit-DB
EPSS 0% CVSS 7.8
HIGH PATCH This Week

Buffer overflow vulnerability found in some Dahua IP Camera devices IPC-HFW1XXX,IPC-HDW1XXX,IPC-HFW2XXX Build before 2018/11. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Buffer Overflow Dahua RCE +3
NVD
EPSS 0% CVSS 9.8
CRITICAL Act Now

Customer of Dahua IP camera or IP PTZ could submit relevant device information to receive a time limited temporary password from Dahua authorized dealer to reset the admin password. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Dahua Ipc Hfw1Xxx Firmware +24
NVD
EPSS 2% CVSS 6.5
MEDIUM PATCH This Month

Firmware upgrade authentication bypass vulnerability was found in Dahua IPC-HDW4300S and some IP products. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required. This Improper Authentication vulnerability could allow attackers to bypass authentication mechanisms to gain unauthorized access.

RCE Authentication Bypass Dahua +9
NVD
EPSS 0% CVSS 8.8
HIGH This Week

Authentication vulnerability found in Dahua NVR models NVR50XX, NVR52XX, NVR54XX, NVR58XX with software before DH_NVR5xxx_Eng_P_V2.616.0000.0.R.20171102. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Dahua Nvr5464 16P 4Ks2 Firmware +21
NVD
EPSS 2% CVSS 7.3
HIGH POC PATCH This Week

A Use of Password Hash Instead of Password for Authentication issue was discovered in Dahua DH-IPC-HDBW23A0RN-ZS, DH-IPC-HDBW13A0SN, DH-IPC-HDW1XXX, DH-IPC-HDW2XXX, DH-IPC-HDW4XXX, DH-IPC-HFW1XXX,. Rated high severity (CVSS 7.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Authentication Bypass Dahua Dh Ipc Hdbw23A0Rn Zs Firmware +14
NVD
EPSS 80% 5.9 CVSS 9.8
CRITICAL POC PATCH THREAT Act Now

A Password in Configuration File issue was discovered in Dahua DH-IPC-HDBW23A0RN-ZS, DH-IPC-HDBW13A0SN, DH-IPC-HDW1XXX, DH-IPC-HDW2XXX, DH-IPC-HDW4XXX, DH-IPC-HFW1XXX, DH-IPC-HFW2XXX, DH-IPC-HFW4XXX,. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 80.4%.

Information Disclosure Dahua Dh Ipc Hdbw23A0Rn Zs Firmware +14
NVD
EPSS 1% CVSS 8.8
HIGH POC This Week

Dahua IP Camera devices 3.200.0001.6 can be exploited via these steps: 1. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Dahua Ip Camera Firmware
NVD GitHub
EPSS 0% CVSS 8.1
HIGH This Week

An issue was discovered on Dahua DHI-HCVR7216A-S3 3.210.0001.10 build 2016-06-06 devices. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Dahua Nvr Firmware
NVD
EPSS 2% CVSS 8.1
HIGH This Week

The web interface on Dahua DHI-HCVR7216A-S3 devices with NVR Firmware 3.210.0001.10 2016-06-06, Camera Firmware 2.400.0000.28.R 2016-03-29, and SmartPSS Software 1.16.1 2017-01-19 allows remote. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Authentication Bypass Dahua Camera Firmware +2
NVD
EPSS 0% CVSS 9.8
CRITICAL Act Now

An issue was discovered on Dahua DHI-HCVR7216A-S3 devices with NVR Firmware 3.210.0001.10 2016-06-06, Camera Firmware 2.400.0000.28.R 2016-03-29, and SmartPSS Software 1.16.1 2017-01-19. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation Dahua Camera Firmware +2
NVD
EPSS 0% CVSS 5.9
MEDIUM This Month

Dahua DHI-HCVR7216A-S3 devices with NVR Firmware 3.210.0001.10 2016-06-06, Camera Firmware 2.400.0000.28.R 2016-03-29, and SmartPSS Software 1.16.1 2017-01-19 send cleartext passwords in response to. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Dahua Camera Firmware +2
NVD
EPSS 90% 5.7 CVSS 7.5
HIGH POC THREAT Act Now

Dahua DVR 2.608.0000.0 and 2.608.GV00.0 allows remote attackers to bypass authentication and obtain sensitive information including user credentials, change user passwords, clear log files, and. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 89.7%.

Dahua Authentication Bypass Dvr Firmware
NVD Exploit-DB
EPSS 2% CVSS 10.0
CRITICAL Act Now

The authorization implementation on Dahua DVR appliances accepts a hash string representing the current date for the role of a master password, which makes it easier for remote attackers to obtain. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation Dahua Dvr0404Hd A +64
NVD
EPSS 9% CVSS 7.8
HIGH POC This Week

Dahua DVR appliances use a password-hash algorithm with a short hash length, which makes it easier for context-dependent attackers to discover cleartext passwords via a brute-force attack. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Dahua Authentication Bypass Dvr0404Hd A +64
NVD Exploit-DB
EPSS 11% CVSS 9.3
CRITICAL POC THREAT Emergency

Dahua DVR appliances have a small value for the maximum password length, which makes it easier for remote attackers to obtain access via a brute-force attack. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. Public exploit code available and EPSS exploitation probability 10.8%.

Privilege Escalation Dahua Dvr0404Hd A +64
NVD Exploit-DB
EPSS 12% CVSS 7.8
HIGH POC THREAT Act Now

Dahua DVR appliances do not properly restrict UPnP requests, which makes it easier for remote attackers to obtain access via vectors involving a replay attack against the TELNET port. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 12.0%.

Dahua Authentication Bypass Dvr0404Hd A +64
NVD Exploit-DB
EPSS 12% CVSS 10.0
CRITICAL POC THREAT Emergency

Dahua DVR appliances have a hardcoded password for (1) the root account and (2) an unspecified "backdoor" account, which makes it easier for remote attackers to obtain administrative access via. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 12.1%.

Dahua Authentication Bypass Dvr0404Hd A +64
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy