Known Vulnerabilities for products from Dahuasecurity
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Dahuasecurity".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Additional devices specifications by Dahuasecurity can be found at device.report : Dahuasecurity
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-3836 json | A vulnerability classified as critical was found in Dahua Smart Park Management up to 20230713. This vulnerability affects un... | 9.8 - CRITICAL | 2023-07-22 | 2023-11-07 |
| CVE-2023-3121 json | A vulnerability has been found in Dahua Smart Parking Management up to 20230528 and classified as problematic. This vulnerabi... | 4.6 - MEDIUM | 2023-06-06 | 2023-11-07 |
| CVE-2022-45434 json | Some Dahua software products have a vulnerability of unauthenticated un-throttled ICMP requests on remote DSS Server. After b... | 5.9 - MEDIUM | 2022-12-27 | 2023-08-08 |
| CVE-2022-45433 json | Some Dahua software products have a vulnerability of unauthenticated traceroute host from remote DSS Server. After bypassing ... | 3.7 - LOW | 2022-12-27 | 2023-08-08 |
| CVE-2022-45432 json | Some Dahua software products have a vulnerability of unauthenticated search for devices. After bypassing the firewall access ... | 5.3 - MEDIUM | 2022-12-27 | 2023-08-08 |
| CVE-2022-45431 json | Some Dahua software products have a vulnerability of unauthenticated restart of remote DSS Server. After bypassing the firewa... | 7.5 - HIGH | 2022-12-27 | 2023-08-08 |
| CVE-2022-45430 json | Some Dahua software products have a vulnerability of unauthenticated enable or disable SSHD service. After bypassing the fire... | 3.7 - LOW | 2022-12-27 | 2023-08-08 |
| CVE-2022-45429 json | Some Dahua software products have a vulnerability of server-side request forgery (SSRF). An Attacker can access internal reso... | 7.5 - HIGH | 2022-12-27 | 2023-01-05 |
| CVE-2022-45428 json | Some Dahua software products have a vulnerability of sensitive information leakage. After obtaining the permissions of admini... | 2.7 - LOW | 2022-12-27 | 2023-01-05 |
| CVE-2022-45427 json | Some Dahua software products have a vulnerability of unrestricted upload of file. After obtaining the permissions of administ... | 7.2 - HIGH | 2022-12-27 | 2023-01-05 |
| CVE-2022-45426 json | Some Dahua software products have a vulnerability of unrestricted download of file. After obtaining the permissions of ordina... | 6.5 - MEDIUM | 2022-12-27 | 2023-01-05 |
| CVE-2022-45425 json | Some Dahua software products have a vulnerability of using of hard-coded cryptographic key. An attacker can obtain the AES cr... | 7.5 - HIGH | 2022-12-27 | 2023-01-05 |
| CVE-2022-45424 json | Some Dahua software products have a vulnerability of unauthenticated request of AES crypto key. An attacker can obtain the AE... | 5.3 - MEDIUM | 2022-12-27 | 2023-08-08 |
| CVE-2022-45423 json | Some Dahua software products have a vulnerability of unauthenticated request of MQTT credentials. An attacker can obtain encr... | 7.5 - HIGH | 2022-12-27 | 2023-08-08 |
| CVE-2022-30564 json | Some Dahua embedded products have a vulnerability of unauthorized modification of the device timestamp. By sending a speciall... | 5.3 - MEDIUM | 2023-02-09 | 2023-02-16 |
| CVE-2022-30563 json | When an attacker uses a man-in-the-middle attack to sniff the request packets with success logging in through ONVIF, he can l... | 7.4 - HIGH | 2022-06-28 | 2022-07-13 |
| CVE-2022-30562 json | If the user enables the https function on the device, an attacker can modify the user’s request data packet through a man-i... | 4.7 - MEDIUM | 2022-06-28 | 2022-07-13 |
| CVE-2022-30561 json | When an attacker uses a man-in-the-middle attack to sniff the request packets with success logging in, the attacker could log... | 5.9 - MEDIUM | 2022-06-28 | 2022-07-13 |
| CVE-2022-30560 json | When an attacker obtaining the administrative account and password, or through a man-in-the-middle attack, the attacker could... | 7.4 - HIGH | 2022-06-28 | 2022-07-13 |
| CVE-2021-33046 json | Some Dahua products have access control vulnerability in the password reset process. Attackers can exploit this vulnerability... | 9.8 - CRITICAL | 2022-01-13 | 2022-01-25 |
Known software with vulnerabilities from Dahuasecurity
| Type | Vendor | Product | Version |
|---|---|---|---|
| Hardware | Dahuasecurity | Dvr0404hd-a | - |
| Hardware | Dahuasecurity | Dvr0404hd-l | - |
| Hardware | Dahuasecurity | Dvr0404hd-s | - |
| Hardware | Dahuasecurity | Dvr0404hd-u | - |
| Hardware | Dahuasecurity | Dvr0404hf-a-e | - |
| Hardware | Dahuasecurity | Dvr0404hf-al-e | - |
| Hardware | Dahuasecurity | Dvr0404hf-s-e | - |
| Hardware | Dahuasecurity | Dvr0404hf-u-e | - |
| Hardware | Dahuasecurity | Dvr0804 | - |
| Hardware | Dahuasecurity | Dvr0804hd-l | - |
| Hardware | Dahuasecurity | Dvr0804hd-s | - |
| Hardware | Dahuasecurity | Dvr0804hf-a-e | - |
| Hardware | Dahuasecurity | Dvr0804hf-al-e | - |
| Hardware | Dahuasecurity | Dvr0804hf-l-e | - |
| Hardware | Dahuasecurity | Dvr0804hf-s-e | - |
| Hardware | Dahuasecurity | Dvr0804hf-u-e | - |
| Hardware | Dahuasecurity | Dvr1604hd-l | - |
| Hardware | Dahuasecurity | Dvr1604hd-s | - |
| Hardware | Dahuasecurity | Dvr1604hf-a-e | - |
| Hardware | Dahuasecurity | Dvr1604hf-al-e | - |