VYPR

Vendor CVEs

Dahua

All CVEs

62 total · sorted by risk
  • CVE-2021-33045CriKEVSep 15, 2021
    risk 0.84cvss 9.8epss 1.00

    The identity authentication bypass vulnerability found in some Dahua products during the login process. Attackers can bypass device identity authentication by constructing malicious data packets.

  • CVE-2021-33044CriKEVSep 15, 2021
    risk 0.84cvss 9.8epss 1.00

    The identity authentication bypass vulnerability found in some Dahua products during the login process. Attackers can bypass device identity authentication by constructing malicious data packets.

  • CVE-2013-2568CriJan 29, 2020
    risk 0.71cvss 9.8epss 0.49

    A Command Injection vulnerability exists in Zavio IP Cameras through 1.6.3 via the ap parameter to /cgi-bin/mft/wireless_mft.cgi, which could let a remote malicious user execute arbitrary code.

  • CVE-2013-1599CriJan 28, 2020
    risk 0.70cvss 9.8epss 0.40

    A Command Injection vulnerability exists in the /var/www/cgi-bin/rtpd.cgi script in D-Link IP Cameras DCS-3411/3430 firmware 1.02, DCS-5605/5635 1.01, DCS-1100L/1130L 1.04, DCS-1100/1130 1.03, DCS-1100/1130 1.04_US, DCS-2102/2121 1.05_RU, DCS-3410 1.02, DCS-5230 1.02, DCS-5230L…

  • CVE-2013-2570CriJan 29, 2020
    risk 0.69cvss 9.8epss 0.27

    A Command Injection vulnerability exists in Zavio IP Cameras through 1.6.3 in the General.Time.NTP.Server parameter to the sub_C8C8 function of the binary /opt/cgi/view/param, which could let a remove malicious user execute arbitrary code.

  • CVE-2024-13985CriAug 27, 2025
    risk 0.65cvss epss 0.08

    A command injection vulnerability in Dahua EIMS versions prior to 2240008 allows unauthenticated remote attackers to execute arbitrary system commands via the capture_handle.action interface. The flaw stems from improper input validation in the captureCommand parameter, which is…

  • CVE-2023-7309CriAug 27, 2025
    risk 0.65cvss epss 0.01

    A path traversal vulnerability exists in the Dahua Smart Park Integrated Management Platform (also referred to as the Dahua Smart Campus Integrated Management Platform), affecting the SOAP-based GIS bitmap upload interface. The flaw allows unauthenticated remote attackers to…

  • CVE-2024-35343CriMay 28, 2024
    risk 0.64cvss 9.8epss 0.00

    Certain Anpviz products allow unauthenticated users to download arbitrary files from the device's filesystem via a HTTP GET request to the /playback/ URI. This affects IPC-D250, IPC-D260, IPC-B850, IPC-D850, IPC-D350, IPC-D3150, IPC-D4250, IPC-D380, IPC-D880, IPC-D280,…

  • CVE-2021-33046CriJan 13, 2022
    risk 0.64cvss 9.8epss 0.01

    Some Dahua products have access control vulnerability in the password reset process. Attackers can exploit this vulnerability through specific deployments to reset device passwords.

  • CVE-2020-9502CriMay 13, 2020
    risk 0.64cvss 9.8epss 0.02

    Some Dahua products with Build time before December 2019 have Session ID predictable vulnerabilities. During normal user access, an attacker can use the predicted Session ID to construct a data packet to attack the device.

  • CVE-2019-9677CriSep 18, 2019
    risk 0.64cvss 9.8epss 0.01

    The specific fields of CGI interface of some Dahua products are not strictly verified, an attacker can cause a buffer overflow by constructing malicious packets. Affected products include: IPC-HDW1X2X,IPC-HFW1X2X,IPC-HDW2X2X,IPC-HFW2X2X,IPC-HDW4X2X,IPC-HFW4X2X,IPC-HDBW4X2X,IPC-HD…

  • CVE-2017-3223CriJul 24, 2018
    risk 0.64cvss 9.8epss 0.05

    Dahua IP camera products using firmware versions prior to V2.400.0000.14.R.20170713 include a version of the Sonia web interface that may be vulnerable to a stack buffer overflow. Dahua IP camera products include an application known as Sonia (/usr/bin/sonia) that provides the…

  • CVE-2026-29116HigJun 10, 2026
    risk 0.57cvss epss 0.00

    A vulnerability has been found in some Dahua products could allow an unauthenticated remote attacker to send a specially crafted packet, triggering an exception that causes the system to reboot unexpectedly, resulting in a denial of service.

  • CVE-2025-34059HigJul 1, 2025
    risk 0.57cvss epss 0.00

    An SQL injection vulnerability exists in the Dahua Smart Cloud Gateway Registration Management Platform via the username parameter in the /index.php/User/doLogin endpoint. The application fails to properly sanitize user input, allowing unauthenticated attackers to inject…

  • CVE-2019-9679HigSep 18, 2019
    risk 0.57cvss 8.8epss 0.01

    Some of Dahua's Debug functions do not have permission separation. Low-privileged users can use the Debug function after logging in. Affected products include: IPC-HDW1X2X,IPC-HFW1X2X,IPC-HDW2X2X,IPC-HFW2X2X,IPC-HDW4X2X,IPC-HFW4X2X,IPC-HDBW4X2X,IPC-HDW5X2X,IPC-HFW5X2X for…

  • CVE-2013-2569HigJan 29, 2020
    risk 0.54cvss 7.5epss 0.31

    A Security Bypass vulnerability exists in Zavio IP Cameras through 1.6.3 because the RTSP protocol authentication is disabled by default, which could let a malicious user obtain unauthorized access to the live video stream.

  • CVE-2019-3948HigJul 29, 2019
    risk 0.54cvss 7.5epss 0.27

    The Amcrest IP2M-841B V2.520.AC00.18.R, Dahua IPC-XXBXX V2.622.0000000.9.R, Dahua IPC HX5X3X and HX4X3X V2.800.0000008.0.R, Dahua DH-IPC HX883X and DH-IPC-HX863X V2.622.0000000.7.R, Dahua DH-SD4XXXXX V2.623.0000000.7.R, Dahua DH-SD5XXXXX V2.623.0000000.1.R, Dahua DH-SD6XXXXX…

  • CVE-2019-9682HigMay 13, 2020
    risk 0.53cvss 8.1epss 0.01

    Dahua devices with Build time before December 2019 use strong security login mode by default, but in order to be compatible with the normal login of early devices, some devices retain the weak security login mode that users can control. If the user uses a weak security login…

  • CVE-2013-2567HigJan 29, 2020
    risk 0.53cvss 7.5epss 0.15

    An Authentication Bypass vulnerability exists in the web interface in Zavio IP Cameras through 1.6.03 due to a hardcoded admin account found in boa.conf, which lets a remote malicious user obtain sensitive information.

  • CVE-2013-4985HigDec 27, 2019
    risk 0.52cvss 7.5epss 0.09

    Multiple Vivotek IP Cameras remote authentication bypass that could allow access to the video stream

  • CVE-2019-9676HigJun 12, 2019
    risk 0.51cvss 7.8epss 0.00

    Buffer overflow vulnerability found in some Dahua IP Camera devices IPC-HFW1XXX,IPC-HDW1XXX,IPC-HFW2XXX Build before 2018/11. The vulnerability exits in the function of redirection display for serial port printing information, which can not be used by product basic functions.…

  • CVE-2022-45431HigDec 27, 2022
    risk 0.49cvss 7.5epss 0.01

    Some Dahua software products have a vulnerability of unauthenticated restart of remote DSS Server. After bypassing the firewall access control policy, by sending a specific crafted packet to the vulnerable interface, an attacker could unauthenticated restart of remote DSS Server.

  • CVE-2022-45429HigDec 27, 2022
    risk 0.49cvss 7.5epss 0.01

    Some Dahua software products have a vulnerability of server-side request forgery (SSRF). An Attacker can access internal resources by concatenating links (URL) that conform to specific rules.

  • CVE-2022-45425HigDec 27, 2022
    risk 0.49cvss 7.5epss 0.01

    Some Dahua software products have a vulnerability of using of hard-coded cryptographic key. An attacker can obtain the AES crypto key by exploiting this vulnerability.

  • CVE-2022-45423HigDec 27, 2022
    risk 0.49cvss 7.5epss 0.01

    Some Dahua software products have a vulnerability of unauthenticated request of MQTT credentials. An attacker can obtain encrypted MQTT credentials by sending a specific crafted packet to the vulnerable interface (the credentials cannot be directly exploited).

  • CVE-2019-9678HigSep 18, 2019
    risk 0.49cvss 7.5epss 0.01

    Some Dahua products have the problem of denial of service during the login process. An attacker can cause a device crashed by constructing a malicious packet. Affected products include: IPC-HDW1X2X,IPC-HFW1X2X,IPC-HDW2X2X,IPC-HFW2X2X,IPC-HDW4X2X,IPC-HFW4X2X,IPC-HDBW4X2X,IPC-HDW5X…

  • CVE-2022-30560HigJun 28, 2022
    risk 0.48cvss 7.4epss 0.01

    When an attacker obtaining the administrative account and password, or through a man-in-the-middle attack, the attacker could send a specified crafted packet to the vulnerable interface then lead the device to crash.

  • CVE-2025-8773HigAug 9, 2025
    risk 0.47cvss 7.3epss 0.01

    A vulnerability, which was classified as critical, was found in Dinstar Monitoring Platform 甘肃省危险品库监控平台 1.0. Affected is an unknown function of the file /itc/$%7BappPath%7D/login_getPasswordErrorNum.action. The manipulation of the argument…

  • CVE-2023-3836MedJul 22, 2023
    risk 0.47cvss 6.3epss 0.74

    A vulnerability classified as critical was found in Dahua Smart Park Management up to 20230713. This vulnerability affects unknown code of the file /emap/devicePoint_addImgIco?hasSubsystem=true. The manipulation of the argument upload leads to unrestricted upload. The attack can…

  • CVE-2022-45427HigDec 27, 2022
    risk 0.47cvss 7.2epss 0.01

    Some Dahua software products have a vulnerability of unrestricted upload of file. After obtaining the permissions of administrators, by sending a specific crafted packet to the vulnerable interface, an attacker can upload arbitrary files.

  • CVE-2020-9499HigApr 9, 2020
    risk 0.47cvss 7.2epss 0.01

    Some Dahua products have buffer overflow vulnerabilities. After the successful login of the legal account, the attacker sends a specific DDNS test command, which may cause the device to go down.

  • CVE-2026-29115MedJun 10, 2026
    risk 0.45cvss epss 0.00

    A vulnerability has been found in some Dahua products could allow an authenticated remote attacker to send a specially crafted packet, triggering an exception that causes the system to reboot unexpectedly, resulting in a denial of service.

  • CVE-2022-45426MedDec 27, 2022
    risk 0.42cvss 6.5epss 0.01

    Some Dahua software products have a vulnerability of unrestricted download of file. After obtaining the permissions of ordinary users, by sending a specific crafted packet to the vulnerable interface, an attacker can download arbitrary files.

  • CVE-2022-45434MedDec 27, 2022
    risk 0.38cvss 5.9epss 0.01

    Some Dahua software products have a vulnerability of unauthenticated un-throttled ICMP requests on remote DSS Server. After bypassing the firewall access control policy, by sending a specific crafted packet to the vulnerable interface, an attacker could exploit the victim server…

  • CVE-2022-30561MedJun 28, 2022
    risk 0.38cvss 5.9epss 0.01

    When an attacker uses a man-in-the-middle attack to sniff the request packets with success logging in, the attacker could log in to the device by replaying the user's login packet.

  • CVE-2020-9501MedMay 13, 2020
    risk 0.36cvss 5.5epss 0.00

    Attackers can obtain Cloud Key information from the Dahua Web P2P control in specific ways. Cloud Key is used to authenticate the connection between the client tool and the platform. An attacker may use the leaked Cloud Key to impersonate the client to connect to the platform,…

  • CVE-2022-45432MedDec 27, 2022
    risk 0.35cvss 5.3epss 0.01

    Some Dahua software products have a vulnerability of unauthenticated search for devices. After bypassing the firewall access control policy, by sending a specific crafted packet to the vulnerable interface, an attacker could unauthenticated search for devices in range of IPs…

  • CVE-2022-45424MedDec 27, 2022
    risk 0.35cvss 5.3epss 0.01

    Some Dahua software products have a vulnerability of unauthenticated request of AES crypto key. An attacker can obtain the AES crypto key by sending a specific crafted packet to the vulnerable interface.

  • CVE-2019-9680MedSep 18, 2019
    risk 0.35cvss 5.3epss 0.01

    Some Dahua products have information leakage issues. Attackers can obtain the IP address and device model information of the device by constructing malicious data packets. Affected products include: IPC-HDW1X2X,IPC-HFW1X2X,IPC-HDW2X2X,IPC-HFW2X2X,IPC-HDW4X2X,IPC-HFW4X2X,IPC-HDBW4…

  • CVE-2019-9681MedSep 17, 2019
    risk 0.35cvss 5.3epss 0.01

    Online upgrade information in some firmware packages of Dahua products is not encrypted. Attackers can obtain this information by analyzing firmware packages by specific means. Affected products include: IPC-HDW1X2X,IPC-HFW1X2X,IPC-HDW2X2X,IPC-HFW2X2X,IPC-HDW4X2X,IPC-HFW4X2X,IPC-…

  • CVE-2022-30564MedFeb 9, 2023
    risk 0.34cvss 5.3epss 0.00

    Some Dahua embedded products have a vulnerability of unauthorized modification of the device timestamp. By sending a specially crafted packet to the vulnerable interface, an attacker can modify the device system time.

  • CVE-2020-9500MedApr 9, 2020
    risk 0.32cvss 4.9epss 0.01

    Some products of Dahua have Denial of Service vulnerabilities. After the successful login of the legal account, the attacker sends a specific log query command, which may cause the device to go down.

  • CVE-2022-30562MedJun 28, 2022
    risk 0.31cvss 4.7epss 0.01

    If the user enables the https function on the device, an attacker can modify the user’s request data packet through a man-in-the-middle attack ,Injection of a malicious URL in the Host: header of the HTTP Request results in a 302 redirect to an attacker-controlled page.

  • CVE-2024-13130MedJan 5, 2025
    risk 0.28cvss 4.3epss 0.01

    A vulnerability was found in Dahua IPC-HFW1200S, IPC-HFW2300R-Z, IPC-HFW5220E-Z and IPC-HDW1200S up to 20241222. It has been rated as problematic. Affected by this issue is some unknown functionality of the file ../mtd/Config/Sha1Account1 of the component Web Interface. The…

  • CVE-2023-3121LowJun 6, 2023
    risk 0.23cvss 3.5epss 0.00

    A vulnerability has been found in Dahua Smart Parking Management up to 20230528 and classified as problematic. This vulnerability affects unknown code of the file /ipms/imageConvert/image. The manipulation of the argument fileUrl leads to server-side request forgery. The exploit…

  • CVE-2022-45428LowDec 27, 2022
    risk 0.18cvss 2.7epss 0.01

    Some Dahua software products have a vulnerability of sensitive information leakage. After obtaining the permissions of administrators, by sending a specific crafted packet to the vulnerable interface, an attacker can obtain the debugging information.

  • CVE-2026-29114LowJun 10, 2026
    risk 0.15cvss epss 0.00

    A vulnerability has been found in some Dahua products. An attacker may obtain the device’s CA root certificate. If that CA is installed and trusted on client systems, the attacker could issue fraudulent certificates trusted by those clients and undermine the certificate trust…

  • CVE-2013-6117Jul 11, 2014
    risk 0.09cvss epss 0.71

    Dahua DVR 2.608.0000.0 and 2.608.GV00.0 allows remote attackers to bypass authentication and obtain sensitive information including user credentials, change user passwords, clear log files, and perform other actions via a request to TCP port 37777.

  • CVE-2013-3615Sep 17, 2013
    risk 0.04cvss epss 0.08

    Dahua DVR appliances use a password-hash algorithm with a short hash length, which makes it easier for context-dependent attackers to discover cleartext passwords via a brute-force attack.

  • CVE-2013-3614Sep 17, 2013
    risk 0.04cvss epss 0.07

    Dahua DVR appliances have a small value for the maximum password length, which makes it easier for remote attackers to obtain access via a brute-force attack.

Page 1 of 2