The identity authentication bypass vulnerability found in some Dahua products during the login process. Attackers can bypass device identity authentication by constructing malicious data packets.
oryginał ENCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HDahuasecurity Ipc Hum7xxx
HWDahuasecuritywszystkie wersjeDahuasecurity Ipc Hum7xxx Firmware
OSDahuasecurity< 2.820.0000000.5.r.210705Dahuasecurity Ipc Hx3xxx
HWDahuasecuritywszystkie wersjeDahuasecurity Ipc Hx3xxx Firmware
OSDahuasecurity< 2.800.0000000.29.r.210630Dahuasecurity Ipc Hx5xxx
HWDahuasecuritywszystkie wersjeDahuasecurity Ipc Hx5xxx Firmware
OSDahuasecurity< 2.820.0000000.18.r.210705Dahuasecurity Sd1a1
HWDahuasecuritywszystkie wersjeDahuasecurity Sd1a1 Firmware
OSDahuasecurity< 2.812.0000007.0.r.210706Dahuasecurity Sd22
HWDahuasecuritywszystkie wersjeDahuasecurity Sd22 Firmware
OSDahuasecurity< 2.812.0000007.0.r.210706Dahuasecurity Sd49
HWDahuasecuritywszystkie wersjeDahuasecurity Sd49 Firmware
OSDahuasecurity< 2.812.0000007.0.r.210706Dahuasecurity Sd50
HWDahuasecuritywszystkie wersjeDahuasecurity Sd50 Firmware
OSDahuasecurity< 2.812.0000007.0.r.210706Dahuasecurity Sd52c
HWDahuasecuritywszystkie wersjeDahuasecurity Sd52c Firmware
OSDahuasecurity< 2.812.0000007.0.r.210706Dahuasecurity Sd6al
HWDahuasecuritywszystkie wersjeDahuasecurity Sd6al Firmware
OSDahuasecurity< 2.812.0000007.0.r.210706Dahuasecurity Tpc Bf1241
HWDahuasecuritywszystkie wersjeDahuasecurity Tpc Bf1241 Firmware
OSDahuasecurity< 2.630.0000000.6.r.210707Dahuasecurity Tpc Bf2221
HWDahuasecuritywszystkie wersjeDahuasecurity Tpc Bf2221 Firmware
OSDahuasecurity< 2.630.0000000.10.r.210707Dahuasecurity Tpc Bf5x01
HWDahuasecuritywszystkie wersjeDahuasecurity Tpc Bf5x01 Firmware
OSDahuasecurity< 2.630.0000000.12.r.210707Dahuasecurity Tpc Bf5x21
HWDahuasecuritywszystkie wersjeDahuasecurity Tpc Bf5x21 Firmware
OSDahuasecurity< 2.630.0000000.8.r.210630Dahuasecurity Tpc Pt8x21b
HWDahuasecuritywszystkie wersjeDahuasecurity Tpc Pt8x21b Firmware
OSDahuasecurity< 2.630.0000000.10.r.210701Dahuasecurity Tpc Sd2221
HWDahuasecuritywszystkie wersjeDahuasecurity Tpc Sd2221 Firmware
OSDahuasecurity≤ 2.630.0000000.7.r.210707
CISA KEV — szczegółyi
- Dostawcai
- Dahua
- Produkti
- IP Camera Firmware
- Data dodania do KEVi
- 21 sierpnia 2024
- Termin remediation (USA)i
- 11 września 2024(po terminie)
Zastosuj mitygacje zgodnie z instrukcjami dostawcy lub zaprzestań użytkowania produktu, jeśli mitygacje są niedostępne.
▸ Pokaż oryginał (EN)
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Kamery IP Dahua i produkty pokrewne zawierają lukę umożliwiającą ominięcie uwierzytelniania, gdy klient określi typ argumentu NetKeyboard podczas uwierzytelniania.
▸ Pokaż oryginał (EN)
Dahua IP cameras and related products contain an authentication bypass vulnerability when the NetKeyboard type argument is specified by the client during authentication.
Powiązane podatności
The identity authentication bypass vulnerability found in some Dahua products during the login process. Attack...
Some Dahua products have access control vulnerability in the password reset process. Attackers can exploit thi...
Some Dahua products with Build time before December 2019 have Session ID predictable vulnerabilities. During n...
Dahua devices with Build time before December 2019 use strong security login mode by default, but in order to ...
Some Dahua products have buffer overflow vulnerabilities. After the successful login of the legal account, the...