← Back

Ipc Hdbw4x2x Firmware

ipc-hdbw4x2x_firmware

Vendor: Dahuasecurity • 5 CVEs

CVEs (5)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2019-9680
1Dahuasecurity
9Ipc Hdbw4x2x Firmware
Ipc Hdw1x2x FirmwareIpc Hdw2x2x Firmware+6 more
Nov 21, 2024
Sep 18, 2019
N/A· v4
5.3 MEDIUM· v3
5.0 MEDIUM· v2
Some Dahua products have information leakage issues. Attackers can obtain the IP address and device model information of the device by constructing malicious data packets. Affected products include: IPC-HDW1X2X,IPC-HFW1X...Show more
Some Dahua products have information leakage issues. Attackers can obtain the IP address and device model information of the device by constructing malicious data packets. Affected products include: IPC-HDW1X2X,IPC-HFW1X2X,IPC-HDW2X2X,IPC-HFW2X2X,IPC-HDW4X2X,IPC-HFW4X2X,IPC-HDBW4X2X,IPC-HDW5X2X,IPC-HFW5X2X for versions which Build time is before August 18, 2019.Show less
CVE-2019-9679
1Dahuasecurity
9Ipc Hdbw4x2x Firmware
Ipc Hdw1x2x FirmwareIpc Hdw2x2x Firmware+6 more
Nov 21, 2024
Sep 18, 2019
N/A· v4
8.8 HIGH· v3
6.5 MEDIUM· v2
Some of Dahua's Debug functions do not have permission separation. Low-privileged users can use the Debug function after logging in. Affected products include: IPC-HDW1X2X,IPC-HFW1X2X,IPC-HDW2X2X,IPC-HFW2X2X,IPC-HDW4X2X,...Show more
Some of Dahua's Debug functions do not have permission separation. Low-privileged users can use the Debug function after logging in. Affected products include: IPC-HDW1X2X,IPC-HFW1X2X,IPC-HDW2X2X,IPC-HFW2X2X,IPC-HDW4X2X,IPC-HFW4X2X,IPC-HDBW4X2X,IPC-HDW5X2X,IPC-HFW5X2X for versions which Build time is before August 18,2019.Show less
CVE-2019-9678
1Dahuasecurity
9Ipc Hdbw4x2x Firmware
Ipc Hdw1x2x FirmwareIpc Hdw2x2x Firmware+6 more
Nov 21, 2024
Sep 18, 2019
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Some Dahua products have the problem of denial of service during the login process. An attacker can cause a device crashed by constructing a malicious packet. Affected products include: IPC-HDW1X2X,IPC-HFW1X2X,IPC-HDW2X2...Show more
Some Dahua products have the problem of denial of service during the login process. An attacker can cause a device crashed by constructing a malicious packet. Affected products include: IPC-HDW1X2X,IPC-HFW1X2X,IPC-HDW2X2X,IPC-HFW2X2X,IPC-HDW4X2X,IPC-HFW4X2X,IPC-HDBW4X2X,IPC-HDW5X2X,IPC-HFW5X2X for versions which Build time is before August 18, 2019.Show less
CVE-2019-9677
1Dahuasecurity
9Ipc Hdbw4x2x Firmware
Ipc Hdw1x2x FirmwareIpc Hdw2x2x Firmware+6 more
Nov 21, 2024
Sep 18, 2019
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
The specific fields of CGI interface of some Dahua products are not strictly verified, an attacker can cause a buffer overflow by constructing malicious packets. Affected products include: IPC-HDW1X2X,IPC-HFW1X2X,IPC-HDW...Show more
The specific fields of CGI interface of some Dahua products are not strictly verified, an attacker can cause a buffer overflow by constructing malicious packets. Affected products include: IPC-HDW1X2X,IPC-HFW1X2X,IPC-HDW2X2X,IPC-HFW2X2X,IPC-HDW4X2X,IPC-HFW4X2X,IPC-HDBW4X2X,IPC-HDW5X2X,IPC-HFW5X2X for versions which Build time is before August 18, 2019.Show less
CVE-2019-9681
1Dahuasecurity
9Ipc Hdbw4x2x Firmware
Ipc Hdw1x2x FirmwareIpc Hdw2x2x Firmware+6 more
Nov 21, 2024
Sep 17, 2019
N/A· v4
5.3 MEDIUM· v3
5.0 MEDIUM· v2
Online upgrade information in some firmware packages of Dahua products is not encrypted. Attackers can obtain this information by analyzing firmware packages by specific means. Affected products include: IPC-HDW1X2X,IPC-...Show more
Online upgrade information in some firmware packages of Dahua products is not encrypted. Attackers can obtain this information by analyzing firmware packages by specific means. Affected products include: IPC-HDW1X2X,IPC-HFW1X2X,IPC-HDW2X2X,IPC-HFW2X2X,IPC-HDW4X2X,IPC-HFW4X2X,IPC-HDBW4X2X,IPC-HDW5X2X,IPC-HFW5X2X for versions which Build time is before August 18,2019.Show less