A vulnerability classified as critical was found in Dahua Smart Park Management up to 20230713. This vulnerability affects unknown code of the file /emap/devicePoint_addImgIco?hasSubsystem=true. The manipulation of the argument upload leads to unrestricted upload. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-235162 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
Max CVSS
9.8
EPSS Score
2.58%
Published
2023-07-22
Updated
2024-03-21
A vulnerability has been found in Dahua Smart Parking Management up to 20230528 and classified as problematic. This vulnerability affects unknown code of the file /ipms/imageConvert/image. The manipulation of the argument fileUrl leads to server-side request forgery. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-230800. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
Max CVSS
4.6
EPSS Score
0.06%
Published
2023-06-06
Updated
2024-03-21
Some Dahua software products have a vulnerability of unauthenticated un-throttled ICMP requests on remote DSS Server. After bypassing the firewall access control policy, by sending a specific crafted packet to the vulnerable interface, an attacker could exploit the victim server to launch ICMP request attack to the designated target host.
Max CVSS
5.9
EPSS Score
0.09%
Published
2022-12-27
Updated
2023-01-05
Some Dahua software products have a vulnerability of unauthenticated search for devices. After bypassing the firewall access control policy, by sending a specific crafted packet to the vulnerable interface, an attacker could unauthenticated search for devices in range of IPs from remote DSS Server.
Max CVSS
5.3
EPSS Score
0.06%
Published
2022-12-27
Updated
2023-01-05
Some Dahua software products have a vulnerability of unauthenticated restart of remote DSS Server. After bypassing the firewall access control policy, by sending a specific crafted packet to the vulnerable interface, an attacker could unauthenticated restart of remote DSS Server.
Max CVSS
7.5
EPSS Score
0.09%
Published
2022-12-27
Updated
2023-01-05
Some Dahua software products have a vulnerability of server-side request forgery (SSRF). An Attacker can access internal resources by concatenating links (URL) that conform to specific rules.
Max CVSS
7.5
EPSS Score
0.14%
Published
2022-12-27
Updated
2023-01-05
Some Dahua software products have a vulnerability of unrestricted upload of file. After obtaining the permissions of administrators, by sending a specific crafted packet to the vulnerable interface, an attacker can upload arbitrary files.
Max CVSS
7.2
EPSS Score
0.09%
Published
2022-12-27
Updated
2023-01-05
Some Dahua software products have a vulnerability of unrestricted download of file. After obtaining the permissions of ordinary users, by sending a specific crafted packet to the vulnerable interface, an attacker can download arbitrary files.
Max CVSS
6.5
EPSS Score
0.06%
Published
2022-12-27
Updated
2023-01-05
Some Dahua software products have a vulnerability of using of hard-coded cryptographic key. An attacker can obtain the AES crypto key by exploiting this vulnerability.
Max CVSS
7.5
EPSS Score
0.14%
Published
2022-12-27
Updated
2023-01-05
Some Dahua software products have a vulnerability of unauthenticated request of AES crypto key. An attacker can obtain the AES crypto key by sending a specific crafted packet to the vulnerable interface.
Max CVSS
5.3
EPSS Score
0.06%
Published
2022-12-27
Updated
2023-01-05
Some Dahua software products have a vulnerability of unauthenticated request of MQTT credentials. An attacker can obtain encrypted MQTT credentials by sending a specific crafted packet to the vulnerable interface (the credentials cannot be directly exploited).
Max CVSS
7.5
EPSS Score
0.14%
Published
2022-12-27
Updated
2023-01-05
Some Dahua embedded products have a vulnerability of unauthorized modification of the device timestamp. By sending a specially crafted packet to the vulnerable interface, an attacker can modify the device system time.
Max CVSS
5.3
EPSS Score
0.06%
Published
2023-02-09
Updated
2023-02-16
When an attacker uses a man-in-the-middle attack to sniff the request packets with success logging in through ONVIF, he can log in to the device by replaying the user's login packet.
Max CVSS
7.4
EPSS Score
0.14%
Published
2022-06-28
Updated
2022-07-13
If the user enables the https function on the device, an attacker can modify the user’s request data packet through a man-in-the-middle attack ,Injection of a malicious URL in the Host: header of the HTTP Request results in a 302 redirect to an attacker-controlled page.
Max CVSS
4.7
EPSS Score
0.07%
Published
2022-06-28
Updated
2022-07-13
When an attacker uses a man-in-the-middle attack to sniff the request packets with success logging in, the attacker could log in to the device by replaying the user's login packet.
Max CVSS
5.9
EPSS Score
0.13%
Published
2022-06-28
Updated
2022-07-13
When an attacker obtaining the administrative account and password, or through a man-in-the-middle attack, the attacker could send a specified crafted packet to the vulnerable interface then lead the device to crash.
Max CVSS
7.4
EPSS Score
0.16%
Published
2022-06-28
Updated
2022-07-13
Some Dahua products have access control vulnerability in the password reset process. Attackers can exploit this vulnerability through specific deployments to reset device passwords.
Max CVSS
9.8
EPSS Score
0.24%
Published
2022-01-13
Updated
2022-01-25
The identity authentication bypass vulnerability found in some Dahua products during the login process. Attackers can bypass device identity authentication by constructing malicious data packets.
Max CVSS
10.0
EPSS Score
6.03%
Published
2021-09-15
Updated
2021-12-02
The identity authentication bypass vulnerability found in some Dahua products during the login process. Attackers can bypass device identity authentication by constructing malicious data packets.
Max CVSS
10.0
EPSS Score
29.05%
Published
2021-09-15
Updated
2021-12-02
Some Dahua products with Build time before December 2019 have Session ID predictable vulnerabilities. During normal user access, an attacker can use the predicted Session ID to construct a data packet to attack the device.
Max CVSS
9.8
EPSS Score
0.22%
Published
2020-05-13
Updated
2020-05-18
Attackers can obtain Cloud Key information from the Dahua Web P2P control in specific ways. Cloud Key is used to authenticate the connection between the client tool and the platform. An attacker may use the leaked Cloud Key to impersonate the client to connect to the platform, resulting in additional consumption of platform server resources. Versions with Build time before April 2020 are affected.
Max CVSS
5.5
EPSS Score
0.04%
Published
2020-05-13
Updated
2021-07-21
Some products of Dahua have Denial of Service vulnerabilities. After the successful login of the legal account, the attacker sends a specific log query command, which may cause the device to go down.
Max CVSS
4.9
EPSS Score
0.08%
Published
2020-04-09
Updated
2021-07-21
Some Dahua products have buffer overflow vulnerabilities. After the successful login of the legal account, the attacker sends a specific DDNS test command, which may cause the device to go down.
Max CVSS
7.2
EPSS Score
0.10%
Published
2020-04-09
Updated
2021-04-19
Dahua devices with Build time before December 2019 use strong security login mode by default, but in order to be compatible with the normal login of early devices, some devices retain the weak security login mode that users can control. If the user uses a weak security login method, an attacker can monitor the device network to intercept network packets to attack the device. So it is recommended that the user disable this login method.
Max CVSS
8.1
EPSS Score
0.22%
Published
2020-05-13
Updated
2020-05-18
Online upgrade information in some firmware packages of Dahua products is not encrypted. Attackers can obtain this information by analyzing firmware packages by specific means. Affected products include: IPC-HDW1X2X,IPC-HFW1X2X,IPC-HDW2X2X,IPC-HFW2X2X,IPC-HDW4X2X,IPC-HFW4X2X,IPC-HDBW4X2X,IPC-HDW5X2X,IPC-HFW5X2X for versions which Build time is before August 18,2019.
Max CVSS
5.3
EPSS Score
0.08%
Published
2019-09-17
Updated
2020-08-24
48 vulnerabilities found
1 2
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!