CVE-2013-3612
10.0
Vector
AV:N/AC:L/Au:N/C:C/I:C/A:C
Exploitability: 10.0 / Impact: 10.0
Source: NVD
Description
Dahua DVR appliances have a hardcoded password for (1) the root account and (2) an unspecified "backdoor" account, which makes it easier for remote attackers to obtain administrative access via authorization requests involving (a) ActiveX, (b) a standalone client, or (c) unknown other vectors.
Affected (65)
Products: Dahuasecurity: Dvr0404hd A, Dvr0404hd L, Dvr0404hd S, Dvr0404hd U, Dvr0404hf A E, Dvr0404hf Al E, Dvr0404hf S E, Dvr0404hf U E, Dvr0804, Dvr0804hd L, Dvr0804hd S, Dvr0804hf A E, Dvr0804hf Al E, Dvr0804hf L E, Dvr0804hf S E, Dvr0804hf U E, Dvr1604hd L, Dvr1604hd S, Dvr1604hf A E, Dvr1604hf Al E, Dvr1604hf L E, Dvr1604hf S E, Dvr1604hf U E, Dvr2104c, Dvr2104h, Dvr2104hc, Dvr2104he, Dvr2108c, Dvr2108h, Dvr2108hc, Dvr2108he, Dvr2116c, Dvr2116h, Dvr2116hc, Dvr2116he, Dvr2404hf S, Dvr2404lf Al, Dvr2404lf S, Dvr3204hf S, Dvr3204lf Al, Dvr3204lf S, Dvr3224l, Dvr3232l, Dvr5104c, Dvr5104h, Dvr5104he, Dvr5108c, Dvr5108h, Dvr5108he, Dvr5116c, Dvr5116h, Dvr5116he, Dvr5204a, Dvr5204l, Dvr5208a, Dvr5208l, Dvr5216a, Dvr5216l, Dvr5404, Dvr5408, Dvr5416, Dvr5804, Dvr5808, Dvr5816, Dvr6404lf S
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions |
Related CWEs
References (2)
Source: af854a3a-2127-422b-91ae-364da2661108
US Government Resource
Timeline
No history available yet.