Unrated severityNVD Advisory· Published Jul 11, 2014· Updated May 6, 2026

CVE-2013-6117

Description

Dahua DVR 2.608.0000.0 and 2.608.GV00.0 allows remote attackers to bypass authentication and obtain sensitive information including user credentials, change user passwords, clear log files, and perform other actions via a request to TCP port 37777.

Affected products

Dahuasecurity/Dvr Firmware2 versions
cpe:2.3:o:dahuasecurity:dvr_firmware:2.608.0000.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:dahuasecurity:dvr_firmware:2.608.0000.0:*:*:*:*:*:*:*
- cpe:2.3:o:dahuasecurity:dvr_firmware:2.608.gv00.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

blog.depthsecurity.com/2013/11/dahua-dvr-authentication-bypass-cve.htmlnvd
packetstormsecurity.com/files/124022/Dahua-DVR-Authentication-Bypass.htmlnvd
seclists.org/bugtraq/2013/Nov/62nvd
www.exploit-db.com/exploits/29673nvd
www.osvdb.org/99783nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.072
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000