CVEs (5)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Dahuasecurity 65Dvr0404hd A Dvr0404hd LDvr0404hd S+62 moreApr 29, 2026 Sep 17, 2013 N/A· v4 N/A· v3 10.0 HIGH· v2 The authorization implementation on Dahua DVR appliances accepts a hash string representing the current date for the role of a master password, which makes it easier for remote attackers to obtain administrative access a...Show more |
1Dahuasecurity 65Dvr0404hd A Dvr0404hd LDvr0404hd S+62 moreApr 29, 2026 Sep 17, 2013 N/A· v4 N/A· v3 7.8 HIGH· v2 Dahua DVR appliances use a password-hash algorithm with a short hash length, which makes it easier for context-dependent attackers to discover cleartext passwords via a brute-force attack. |
1Dahuasecurity 65Dvr0404hd A Dvr0404hd LDvr0404hd S+62 moreApr 29, 2026 Sep 17, 2013 N/A· v4 N/A· v3 9.3 HIGH· v2 Dahua DVR appliances have a small value for the maximum password length, which makes it easier for remote attackers to obtain access via a brute-force attack. |
1Dahuasecurity 65Dvr0404hd A Dvr0404hd LDvr0404hd S+62 moreApr 29, 2026 Sep 17, 2013 N/A· v4 N/A· v3 7.8 HIGH· v2 Dahua DVR appliances do not properly restrict UPnP requests, which makes it easier for remote attackers to obtain access via vectors involving a replay attack against the TELNET port. |
1Dahuasecurity 65Dvr0404hd A Dvr0404hd LDvr0404hd S+62 moreApr 29, 2026 Sep 17, 2013 N/A· v4 N/A· v3 10.0 HIGH· v2 Dahua DVR appliances have a hardcoded password for (1) the root account and (2) an unspecified "backdoor" account, which makes it easier for remote attackers to obtain administrative access via authorization requests inv...Show more |