← Back

CVE-2024-39950

nvd nist
Published: Jul 31, 2024Modified: Sep 30, 2025

JSON object

Loading...
9.8
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitability: 3.9 / Impact: 5.9
Source: NVD

Description

A vulnerability has been found in Dahua products. Attackers can send carefully crafted data packets to the interface with vulnerabilities to initiate device initialization.

Affected (58)

Products: Dahuasecurity: Nvr4104 4ks2/l Firmware, Nvr4108 4ks2/l Firmware, Nvr4116 4ks2/l Firmware, Nvr4104 P 4ks2/l Firmware, Nvr4108 P 4ks2/l Firmware, Nvr4108 8p 4ks2/l Firmware, Nvr4116 8p 4ks2/l Firmware, Nvr4104hs 4ks2/l Firmware, Nvr4108hs 4ks2/l Firmware, Nvr4104hs P 4ks2/l Firmware, Nvr4108hs P 4ks2/l Firmware, Nvr4108hs 8p 4ks2/l Firmware, Nvr4116hs 8p 4ks2/l Firmware, Nvr4204 4ks2/l Firmware, Nvr4208 4ks2/l Firmware, Nvr4216 4ks2/l Firmware, Nvr4204 P 4ks2/l Firmware, Nvr4208 8p 4ks2/l Firmware, Nvr4216 16p 4ks2/l Firmware, Nvr4232 4ks2/l Firmware, Nvr4232 16p 4ks2/l Firmware, Nvr4116hs 4ks2/l Firmware, Nvr4416 4ks2/i Firmware, Nvr4416 16p 4ks2/i Firmware, Nvr4432 16p 4ks2/i Firmware, Nvr4816 4ks2/i Firmware, Nvr4816 16p 4ks2/i Firmware, Nvr4832 4ks2/i Firmware, Nvr4832 16p 4ks2/i Firmware, Nvr4432 4ks2/i Firmware, Nvr4232 4ks3 Firmware, Nvr4232 16p 4ks3 Firmware, Nvr4216 4ks3 Firmware, Nvr4216 16p 4ks3 Firmware, Nvr4208 8p 4ks3 Firmware, Nvr4208 4ks3 Firmware, Nvr4204 P 4ks3 Firmware, Nvr4204 4ks3 Firmware, Nvr4116hs 8p 4ks3 Firmware, Nvr4116hs 4ks3 Firmware, Nvr4108hs P 4ks3 Firmware, Nvr4108hs 8p 4ks3 Firmware, Nvr4108hs 4ks3 Firmware, Nvr4104hs P 4ks3 Firmware, Nvr4104hs 4ks3 Firmware, Nvr4116 8p 4ks3 Firmware, Nvr4116 4ks3 Firmware, Nvr4108 P 4ks3 Firmware, Nvr4104 4ks3 Firmware, Nvr4108 8p 4ks3 Firmware, Nvr4108 4ks3 Firmware, Nvr4104 P 4ks3 Firmware, Nvr4104hs P 4ks3(960g) Firmware, Nvr4104hs 4ks3(960g) Firmware, Nvr4108hs 4ks3(960g) Firmware, Nvr4104 P 4ks3(960g) Firmware, Ipc Hfs8849g Z3 Led Firmware, Ipc Hfs8449g Z7 Led Firmware
Dahuasecurity
58 products
Nvr4104 4ks2/l Firmware
Nvr4108 4ks2/l Firmware
Nvr4116 4ks2/l Firmware
Nvr4104 P 4ks2/l Firmware
Nvr4108 P 4ks2/l Firmware
Nvr4108 8p 4ks2/l Firmware
Nvr4116 8p 4ks2/l Firmware
Nvr4104hs 4ks2/l Firmware
Nvr4108hs 4ks2/l Firmware
Nvr4104hs P 4ks2/l Firmware
Nvr4108hs P 4ks2/l Firmware
Nvr4108hs 8p 4ks2/l Firmware
Nvr4116hs 8p 4ks2/l Firmware
Nvr4204 4ks2/l Firmware
Nvr4208 4ks2/l Firmware
Nvr4216 4ks2/l Firmware
Nvr4204 P 4ks2/l Firmware
Nvr4208 8p 4ks2/l Firmware
Nvr4216 16p 4ks2/l Firmware
Nvr4232 4ks2/l Firmware
Nvr4232 16p 4ks2/l Firmware
Nvr4116hs 4ks2/l Firmware
Nvr4416 4ks2/i Firmware
Nvr4416 16p 4ks2/i Firmware
Nvr4432 16p 4ks2/i Firmware
Nvr4816 4ks2/i Firmware
Nvr4816 16p 4ks2/i Firmware
Nvr4832 4ks2/i Firmware
Nvr4832 16p 4ks2/i Firmware
Nvr4432 4ks2/i Firmware
Nvr4232 4ks3 Firmware
Nvr4232 16p 4ks3 Firmware
Nvr4216 4ks3 Firmware
Nvr4216 16p 4ks3 Firmware
Nvr4208 8p 4ks3 Firmware
Nvr4208 4ks3 Firmware
Nvr4204 P 4ks3 Firmware
Nvr4204 4ks3 Firmware
Nvr4116hs 8p 4ks3 Firmware
Nvr4116hs 4ks3 Firmware
Nvr4108hs P 4ks3 Firmware
Nvr4108hs 8p 4ks3 Firmware
Nvr4108hs 4ks3 Firmware
Nvr4104hs P 4ks3 Firmware
Nvr4104hs 4ks3 Firmware
Nvr4116 8p 4ks3 Firmware
Nvr4116 4ks3 Firmware
Nvr4108 P 4ks3 Firmware
Nvr4104 4ks3 Firmware
Nvr4108 8p 4ks3 Firmware
Nvr4108 4ks3 Firmware
Nvr4104 P 4ks3 Firmware
Nvr4104hs P 4ks3(960g) Firmware
Nvr4104hs 4ks3(960g) Firmware
Nvr4108hs 4ks3(960g) Firmware
Nvr4104 P 4ks3(960g) Firmware
Ipc Hfs8849g Z3 Led Firmware
Ipc Hfs8449g Z7 Led Firmware
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4104 4ks2/l Firmware
Before 4.003.0000000.1.r.240515
Running on/withPlatform Versions
Dahuasecurity
Nvr4104 4ks2/l
All versions
Configuration B
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4108 4ks2/l Firmware
Version 4.003.0000000.1.r.240515
Running on/withPlatform Versions
Dahuasecurity
Nvr4108 4ks2/l
All versions
Configuration C
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4116 4ks2/l Firmware
Before 4.003.0000000.1.r.240515
Running on/withPlatform Versions
Dahuasecurity
Nvr4116 4ks2/l
All versions
Configuration D
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4104 P 4ks2/l Firmware
Before 4.003.0000000.1.r.240515
Running on/withPlatform Versions
Dahuasecurity
Nvr4104 P 4ks2/l
All versions
Configuration E
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4108 P 4ks2/l Firmware
Before 4.003.0000000.1.r.240515
Running on/withPlatform Versions
Dahuasecurity
Nvr4108 P 4ks2/l
All versions
Configuration F
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4108 8p 4ks2/l Firmware
Before 4.003.0000000.1.r.240515
Running on/withPlatform Versions
Dahuasecurity
Nvr4108 8p 4ks2/l
All versions
Configuration G
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4116 8p 4ks2/l Firmware
Before 4.003.0000000.1.r.240515
Running on/withPlatform Versions
Dahuasecurity
Nvr4116 8p 4ks2/l
All versions
Configuration H
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4104hs 4ks2/l Firmware
Before 4.003.0000000.1.r.240515
Running on/withPlatform Versions
Dahuasecurity
Nvr4104hs 4ks2/l
All versions
Configuration I
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4108hs 4ks2/l Firmware
Before 4.003.0000000.1.r.240515
Running on/withPlatform Versions
Dahuasecurity
Nvr4108hs 4ks2/l
All versions
Configuration J
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4104hs P 4ks2/l Firmware
Before 4.003.0000000.1.r.240515
Running on/withPlatform Versions
Dahuasecurity
Nvr4104hs P 4ks2/l
All versions
Configuration K
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4108hs P 4ks2/l Firmware
Before 4.003.0000000.1.r.240515
Running on/withPlatform Versions
Dahuasecurity
Nvr4108hs P 4ks2/l
All versions
Configuration L
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4108hs 8p 4ks2/l Firmware
Before 4.003.0000000.1.r.240515
Running on/withPlatform Versions
Dahuasecurity
Nvr4108hs 8p 4ks2/l
All versions
Configuration M
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4116hs 8p 4ks2/l Firmware
Before 4.003.0000000.1.r.240515
Running on/withPlatform Versions
Dahuasecurity
Nvr4116hs 8p 4ks2/l
All versions
Configuration N
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4204 4ks2/l Firmware
Before 4.003.0000000.1.r.240515
Running on/withPlatform Versions
Dahuasecurity
Nvr4204 4ks2/l
All versions
Configuration O
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4208 4ks2/l Firmware
Before 4.003.0000000.1.r.240515
Running on/withPlatform Versions
Dahuasecurity
Nvr4208 4ks2/l
All versions
Configuration P
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4216 4ks2/l Firmware
Before 4.003.0000000.1.r.240515
Running on/withPlatform Versions
Dahuasecurity
Nvr4216 4ks2/l
All versions
Configuration Q
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4204 P 4ks2/l Firmware
Before 4.003.0000000.1.r.240515
Running on/withPlatform Versions
Dahuasecurity
Nvr4204 P 4ks2/l
All versions
Configuration R
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4208 8p 4ks2/l Firmware
Before 4.003.0000000.1.r.240515
Running on/withPlatform Versions
Dahuasecurity
Nvr4208 8p 4ks2/l
All versions
Configuration S
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4216 16p 4ks2/l Firmware
Before 4.003.0000000.1.r.240515
Running on/withPlatform Versions
Dahuasecurity
Nvr4216 16p 4ks2/l
All versions
Configuration T
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4232 4ks2/l Firmware
Before 4.003.0000000.1.r.240515
Running on/withPlatform Versions
Dahuasecurity
Nvr4232 4ks2/l
All versions
Configuration U
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4232 16p 4ks2/l Firmware
Before 4.003.0000000.1.r.240515
Running on/withPlatform Versions
Dahuasecurity
Nvr4232 16p 4ks2/l
All versions
Configuration V
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4116hs 4ks2/l Firmware
Before 4.003.0000000.1.r.240515
Running on/withPlatform Versions
Dahuasecurity
Nvr4116hs 4ks2/l
All versions
Configuration W
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4416 4ks2/i Firmware
Before 4.001.0000001.6.r.240725
Running on/withPlatform Versions
Dahuasecurity
Nvr4416 4ks2/i
All versions
Configuration X
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4416 16p 4ks2/i Firmware
Before 4.001.0000001.6.r.240725
Running on/withPlatform Versions
Dahuasecurity
Nvr4416 16p 4ks2/i
All versions
Configuration Y
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4432 16p 4ks2/i Firmware
Before 4.001.0000001.6.r.240725
Running on/withPlatform Versions
Dahuasecurity
Nvr4432 16p 4ks2/i
All versions
Configuration Z
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4816 4ks2/i Firmware
Before 4.001.0000001.6.r.240725
Running on/withPlatform Versions
Dahuasecurity
Nvr4816 4ks2/i
All versions
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4816 16p 4ks2/i Firmware
Before 4.001.0000001.6.r.240725
Running on/withPlatform Versions
Dahuasecurity
Nvr4816 16p 4ks2/i
All versions
Configuration B
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4832 4ks2/i Firmware
Before 4.001.0000001.6.r.240725
Running on/withPlatform Versions
Dahuasecurity
Nvr4832 4ks2/i
All versions
Configuration C
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4832 16p 4ks2/i Firmware
Before 4.001.0000001.6.r.240725
Running on/withPlatform Versions
Dahuasecurity
Nvr4832 16p 4ks2/i
All versions
Configuration D
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4432 4ks2/i Firmware
Before 4.001.0000001.6.r.240725
Running on/withPlatform Versions
Dahuasecurity
Nvr4432 4ks2/i
All versions
Configuration E
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4232 4ks3 Firmware
Before 4.003.0000000.0.r.240312
Running on/withPlatform Versions
Dahuasecurity
Nvr4232 4ks3
All versions
Configuration F
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4232 16p 4ks3 Firmware
Before 4.003.0000000.0.r.240312
Running on/withPlatform Versions
Dahuasecurity
Nvr4232 16p 4ks3
All versions
Configuration G
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4216 4ks3 Firmware
Before 4.003.0000000.0.r.240312
Running on/withPlatform Versions
Dahuasecurity
Nvr4216 4ks3
All versions
Configuration H
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4216 16p 4ks3 Firmware
Before 4.003.0000000.0.r.240312
Running on/withPlatform Versions
Dahuasecurity
Nvr4216 16p 4ks3
All versions
Configuration I
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4208 8p 4ks3 Firmware
Before 4.003.0000000.0.r.240312
Running on/withPlatform Versions
Dahuasecurity
Nvr4208 8p 4ks3
All versions
Configuration J
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4208 4ks3 Firmware
Before 4.003.0000000.0.r.240312
Running on/withPlatform Versions
Dahuasecurity
Nvr4208 4ks3
All versions
Configuration K
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4204 P 4ks3 Firmware
Before 4.003.0000000.0.r.240312
Running on/withPlatform Versions
Dahuasecurity
Nvr4204 P 4ks3
All versions
Configuration L
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4204 4ks3 Firmware
Before 4.003.0000000.0.r.240312
Running on/withPlatform Versions
Dahuasecurity
Nvr4204 4ks3
All versions
Configuration M
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4116hs 8p 4ks3 Firmware
Before 4.003.0000000.0.r.240312
Running on/withPlatform Versions
Dahuasecurity
Nvr4116hs 8p 4ks3
All versions
Configuration N
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4116hs 4ks3 Firmware
Before 4.003.0000000.0.r.240312
Running on/withPlatform Versions
Dahuasecurity
Nvr4116hs 4ks3
All versions
Configuration O
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4108hs P 4ks3 Firmware
Before 4.003.0000000.0.r.240312
Running on/withPlatform Versions
Dahuasecurity
Nvr4108hs P 4ks3
All versions
Configuration P
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4108hs 8p 4ks3 Firmware
Before 4.003.0000000.0.r.240312
Running on/withPlatform Versions
Dahuasecurity
Nvr4108hs 8p 4ks3
All versions
Configuration Q
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4108hs 4ks3 Firmware
Before 4.003.0000000.0.r.240312
Running on/withPlatform Versions
Dahuasecurity
Nvr4108hs 4ks3
All versions
Configuration R
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4104hs P 4ks3 Firmware
Before 4.003.0000000.0.r.240312
Running on/withPlatform Versions
Dahuasecurity
Nvr4104hs P 4ks3
All versions
Configuration S
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4104hs 4ks3 Firmware
Before 4.003.0000000.0.r.240312
Running on/withPlatform Versions
Dahuasecurity
Nvr4104hs 4ks3
All versions
Configuration T
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4116 8p 4ks3 Firmware
Before 4.003.0000000.0.r.240312
Running on/withPlatform Versions
Dahuasecurity
Nvr4116 8p 4ks3
All versions
Configuration U
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4116 4ks3 Firmware
Before 4.003.0000000.0.r.240312
Running on/withPlatform Versions
Dahuasecurity
Nvr4116 4ks3
All versions
Configuration V
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4108 P 4ks3 Firmware
Before 4.003.0000000.0.r.240312
Running on/withPlatform Versions
Dahuasecurity
Nvr4108 P 4ks3
All versions
Configuration W
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4104 4ks3 Firmware
Before 4.003.0000000.0.r.240312
Running on/withPlatform Versions
Dahuasecurity
Nvr4104 4ks3
All versions
Configuration X
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4108 8p 4ks3 Firmware
Before 4.003.0000000.0.r.240312
Running on/withPlatform Versions
Dahuasecurity
Nvr4108 8p 4ks3
All versions
Configuration Y
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4108 4ks3 Firmware
Before 4.003.0000000.0.r.240312
Running on/withPlatform Versions
Dahuasecurity
Nvr4108 4ks3
All versions
Configuration Z
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4104 P 4ks3 Firmware
Before 4.003.0000000.0.r.240312
Running on/withPlatform Versions
Dahuasecurity
Nvr4104 P 4ks3
All versions
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4104hs P 4ks3(960g) Firmware
Before 4.003.0000000.0.r.240312
Running on/withPlatform Versions
Dahuasecurity
Nvr4104hs P 4ks3(960g)
All versions
Configuration B
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4104hs 4ks3(960g) Firmware
Before 4.003.0000000.0.r.240312
Running on/withPlatform Versions
Dahuasecurity
Nvr4104hs 4ks3(960g)
All versions
Configuration C
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4108hs 4ks3(960g) Firmware
Before 4.003.0000000.0.r.240312
Running on/withPlatform Versions
Dahuasecurity
Nvr4108hs 4ks3(960g)
All versions
Configuration D
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvr4104 P 4ks3(960g) Firmware
Before 4.003.0000000.0.r.240312
Running on/withPlatform Versions
Dahuasecurity
Nvr4104 P 4ks3(960g)
All versions
Configuration E
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Ipc Hfs8849g Z3 Led Firmware
Before 3.140.0000000.30.r.240725
Running on/withPlatform Versions
Dahuasecurity
Ipc Hfs8849g Z3 Led
All versions
Configuration F
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Ipc Hfs8449g Z7 Led Firmware
Before 3.140.0000000.30.r.240725
Running on/withPlatform Versions
Dahuasecurity
Ipc Hfs8449g Z7 Led
All versions

Related CWEs

CWE-121
Stack-based Buffer Overflow
A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).
CWE-20
Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (1)

Source: cybersecurity@dahuatech.com
Vendor Advisory

Timeline

No history available yet.