CVE-2017-9316
Summary
| CVE | CVE-2017-9316 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2017-11-27 17:29:00 UTC |
| Updated | 2017-12-20 20:40:00 UTC |
| Description | Firmware upgrade authentication bypass vulnerability was found in Dahua IPC-HDW4300S and some IP products. The vulnerability was caused by internal Debug function. This particular function was used for problem analysis and performance tuning during product development phase. It allowed the device to receive only specific data (one direction, no transmit) and therefore it was not involved in any instance of collecting user privacy data or allowing remote code execution. |
Risk And Classification
Problem Types: CWE-287
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Dahuasecurity | Ipc-hdbw4x00 | - | All | All | All |
| Hardware | Dahuasecurity | Ipc-hdbw4x00 | - | All | All | All |
| Operating System | Dahuasecurity | Ipc-hdbw4x00 Firmware | 2.400.0000.3.r.20150312 | All | All | All |
| Operating System | Dahuasecurity | Ipc-hdbw4x00 Firmware | 2.420.0006.0.r.20150311 | All | All | All |
| Operating System | Dahuasecurity | Ipc-hdbw4x00 Firmware | 2.400.0000.3.r.20150312 | All | All | All |
| Operating System | Dahuasecurity | Ipc-hdbw4x00 Firmware | 2.420.0006.0.r.20150311 | All | All | All |
| Hardware | Dahuasecurity | Ipc-hdbw5x00 | - | All | All | All |
| Hardware | Dahuasecurity | Ipc-hdbw5x00 | - | All | All | All |
| Operating System | Dahuasecurity | Ipc-hdbw5x00 Firmware | 2.400.0000.3.r.20150312 | All | All | All |
| Operating System | Dahuasecurity | Ipc-hdbw5x00 Firmware | 2.420.0006.0.r.20150311 | All | All | All |
| Operating System | Dahuasecurity | Ipc-hdbw5x00 Firmware | 2.400.0000.3.r.20150312 | All | All | All |
| Operating System | Dahuasecurity | Ipc-hdbw5x00 Firmware | 2.420.0006.0.r.20150311 | All | All | All |
| Hardware | Dahuasecurity | Ipc-hdw4300s | - | All | All | All |
| Hardware | Dahuasecurity | Ipc-hdw4300s | - | All | All | All |
| Operating System | Dahuasecurity | Ipc-hdw4300s Firmware | 2.240.0009.0.r.20131015 | All | All | All |
| Operating System | Dahuasecurity | Ipc-hdw4300s Firmware | 2.400.0000.0.r.20131231 | All | All | All |
| Operating System | Dahuasecurity | Ipc-hdw4300s Firmware | 2.420.0000.0.r.20140419 | All | All | All |
| Operating System | Dahuasecurity | Ipc-hdw4300s Firmware | 2.420.0002.0.r.20140621 | All | All | All |
| Operating System | Dahuasecurity | Ipc-hdw4300s Firmware | 2.420.0002.0.r.20140724 | All | All | All |
| Operating System | Dahuasecurity | Ipc-hdw4300s Firmware | 2.420.0005.0.r.20141205 | All | All | All |
| Operating System | Dahuasecurity | Ipc-hdw4300s Firmware | 2.420.0006.0.r.20150311 | All | All | All |
| Operating System | Dahuasecurity | Ipc-hdw4300s Firmware | 2.420.0007.0.r.20150409 | All | All | All |
| Operating System | Dahuasecurity | Ipc-hdw4300s Firmware | 2.420.0008.0.r.20150710 | All | All | All |
| Operating System | Dahuasecurity | Ipc-hdw4300s Firmware | 2.240.0009.0.r.20131015 | All | All | All |
| Operating System | Dahuasecurity | Ipc-hdw4300s Firmware | 2.400.0000.0.r.20131231 | All | All | All |
| Operating System | Dahuasecurity | Ipc-hdw4300s Firmware | 2.420.0000.0.r.20140419 | All | All | All |
| Operating System | Dahuasecurity | Ipc-hdw4300s Firmware | 2.420.0002.0.r.20140621 | All | All | All |
| Operating System | Dahuasecurity | Ipc-hdw4300s Firmware | 2.420.0002.0.r.20140724 | All | All | All |
| Operating System | Dahuasecurity | Ipc-hdw4300s Firmware | 2.420.0005.0.r.20141205 | All | All | All |
| Operating System | Dahuasecurity | Ipc-hdw4300s Firmware | 2.420.0006.0.r.20150311 | All | All | All |
| Operating System | Dahuasecurity | Ipc-hdw4300s Firmware | 2.420.0007.0.r.20150409 | All | All | All |
| Operating System | Dahuasecurity | Ipc-hdw4300s Firmware | 2.420.0008.0.r.20150710 | All | All | All |
| Hardware | Dahuasecurity | Ipc-hdw4x00 | - | All | All | All |
| Hardware | Dahuasecurity | Ipc-hdw4x00 | - | All | All | All |
| Operating System | Dahuasecurity | Ipc-hdw4x00 Firmware | 2.400.0000.3.r.20150312 | All | All | All |
| Operating System | Dahuasecurity | Ipc-hdw4x00 Firmware | 2.420.0006.0.r.20150311 | All | All | All |
| Operating System | Dahuasecurity | Ipc-hdw4x00 Firmware | 2.400.0000.3.r.20150312 | All | All | All |
| Operating System | Dahuasecurity | Ipc-hdw4x00 Firmware | 2.420.0006.0.r.20150311 | All | All | All |
| Hardware | Dahuasecurity | Ipc-hdw5x00 | - | All | All | All |
| Hardware | Dahuasecurity | Ipc-hdw5x00 | - | All | All | All |
| Operating System | Dahuasecurity | Ipc-hdw5x00 Firmware | 2.400.0000.3.r.20150312 | All | All | All |
| Operating System | Dahuasecurity | Ipc-hdw5x00 Firmware | 2.420.0006.0.r.20150311 | All | All | All |
| Operating System | Dahuasecurity | Ipc-hdw5x00 Firmware | 2.400.0000.3.r.20150312 | All | All | All |
| Operating System | Dahuasecurity | Ipc-hdw5x00 Firmware | 2.420.0006.0.r.20150311 | All | All | All |
| Hardware | Dahuasecurity | Ipc-hf5x00 | - | All | All | All |
| Hardware | Dahuasecurity | Ipc-hf5x00 | - | All | All | All |
| Operating System | Dahuasecurity | Ipc-hf5x00 Firmware | 2.400.0000.3.r.20150312 | All | All | All |
| Operating System | Dahuasecurity | Ipc-hf5x00 Firmware | 2.420.0006.0.r.20150311 | All | All | All |
| Operating System | Dahuasecurity | Ipc-hf5x00 Firmware | 2.400.0000.3.r.20150312 | All | All | All |
| Operating System | Dahuasecurity | Ipc-hf5x00 Firmware | 2.420.0006.0.r.20150311 | All | All | All |
| Hardware | Dahuasecurity | Ipc-hfw4x00 | - | All | All | All |
| Hardware | Dahuasecurity | Ipc-hfw4x00 | - | All | All | All |
| Operating System | Dahuasecurity | Ipc-hfw4x00 Firmware | 2.400.0000.3.r.20150312 | All | All | All |
| Operating System | Dahuasecurity | Ipc-hfw4x00 Firmware | 2.420.0006.0.r.20150311 | All | All | All |
| Operating System | Dahuasecurity | Ipc-hfw4x00 Firmware | 2.400.0000.3.r.20150312 | All | All | All |
| Operating System | Dahuasecurity | Ipc-hfw4x00 Firmware | 2.420.0006.0.r.20150311 | All | All | All |
| Hardware | Dahuasecurity | Ipc-hfw5x00 | - | All | All | All |
| Hardware | Dahuasecurity | Ipc-hfw5x00 | - | All | All | All |
| Operating System | Dahuasecurity | Ipc-hfw5x00 Firmware | 2.400.0000.3.r.20150312 | All | All | All |
| Operating System | Dahuasecurity | Ipc-hfw5x00 Firmware | 2.420.0006.0.r.20150311 | All | All | All |
| Operating System | Dahuasecurity | Ipc-hfw5x00 Firmware | 2.400.0000.3.r.20150312 | All | All | All |
| Operating System | Dahuasecurity | Ipc-hfw5x00 Firmware | 2.420.0006.0.r.20150311 | All | All | All |
| Hardware | Dahuasecurity | Nvr11hs | - | All | All | All |
| Hardware | Dahuasecurity | Nvr11hs | - | All | All | All |
| Operating System | Dahuasecurity | Nvr11hs Firmware | 3.210.0000.0.r.20150206 | All | All | All |
| Operating System | Dahuasecurity | Nvr11hs Firmware | 3.210.0000.1.r.20150420 | All | All | All |
| Operating System | Dahuasecurity | Nvr11hs Firmware | 3.210.0000.2.r.20150715 | All | All | All |
| Operating System | Dahuasecurity | Nvr11hs Firmware | 3.210.0000.3.r.20150921 | All | All | All |
| Operating System | Dahuasecurity | Nvr11hs Firmware | 3.210.0000.5.r.20160409 | All | All | All |
| Operating System | Dahuasecurity | Nvr11hs Firmware | 3.210.0000.5.r.20160603 | All | All | All |
| Operating System | Dahuasecurity | Nvr11hs Firmware | 3.210.0000.5.r.20160803 | All | All | All |
| Operating System | Dahuasecurity | Nvr11hs Firmware | 3.210.0000.5.r.20161226 | All | All | All |
| Operating System | Dahuasecurity | Nvr11hs Firmware | 3.210.0000.5.r.20170305 | All | All | All |
| Operating System | Dahuasecurity | Nvr11hs Firmware | 3.210.0000.5.r.20170321 | All | All | All |
| Operating System | Dahuasecurity | Nvr11hs Firmware | 3.210.0000.0.r.20150206 | All | All | All |
| Operating System | Dahuasecurity | Nvr11hs Firmware | 3.210.0000.1.r.20150420 | All | All | All |
| Operating System | Dahuasecurity | Nvr11hs Firmware | 3.210.0000.2.r.20150715 | All | All | All |
| Operating System | Dahuasecurity | Nvr11hs Firmware | 3.210.0000.3.r.20150921 | All | All | All |
| Operating System | Dahuasecurity | Nvr11hs Firmware | 3.210.0000.5.r.20160409 | All | All | All |
| Operating System | Dahuasecurity | Nvr11hs Firmware | 3.210.0000.5.r.20160603 | All | All | All |
| Operating System | Dahuasecurity | Nvr11hs Firmware | 3.210.0000.5.r.20160803 | All | All | All |
| Operating System | Dahuasecurity | Nvr11hs Firmware | 3.210.0000.5.r.20161226 | All | All | All |
| Operating System | Dahuasecurity | Nvr11hs Firmware | 3.210.0000.5.r.20170305 | All | All | All |
| Operating System | Dahuasecurity | Nvr11hs Firmware | 3.210.0000.5.r.20170321 | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Dahua Technology Global Home | CONFIRM | www.dahuasecurity.com | Patch, Vendor Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.