← Back

Dahuasecurity

dahuasecurity

58 CVEs • 748 products

Products (748)

Click to collapse
Toggle
Dss Express
dss_express
12 CVEs
Dss Professional
dss_professional
12 CVEs
Dhi Dss7016d S2 Firmware
dhi-dss7016d-s2_firmware
12 CVEs
Dhi Dss7016dr S2 Firmware
dhi-dss7016dr-s2_firmware
12 CVEs
Dhi Dss4004 S2 Firmware
dhi-dss4004-s2_firmware
12 CVEs
Nvr4416 16p 4ks2/i Firmware
nvr4416-16p-4ks2/i_firmware
8 CVEs
Nvr4416 4ks2/i Firmware
nvr4416-4ks2/i_firmware
8 CVEs
Nvr4432 16p 4ks2/i Firmware
nvr4432-16p-4ks2/i_firmware
8 CVEs
Nvr4432 4ks2/i Firmware
nvr4432-4ks2/i_firmware
8 CVEs
Nvr4816 16p 4ks2/i Firmware
nvr4816-16p-4ks2/i_firmware
8 CVEs
Nvr4816 4ks2/i Firmware
nvr4816-4ks2/i_firmware
8 CVEs
Nvr4832 16p 4ks2/i Firmware
nvr4832-16p-4ks2/i_firmware
8 CVEs
Nvr4832 4ks2/i Firmware
nvr4832-4ks2/i_firmware
8 CVEs
Nvr4104 4ks2/l Firmware
nvr4104-4ks2/l_firmware
7 CVEs
Nvr4108 4ks2/l Firmware
nvr4108-4ks2/l_firmware
7 CVEs
Nvr4116 4ks2/l Firmware
nvr4116-4ks2/l_firmware
7 CVEs
Nvr4104 P 4ks2/l Firmware
nvr4104-p-4ks2/l_firmware
7 CVEs
Nvr4108 P 4ks2/l Firmware
nvr4108-p-4ks2/l_firmware
7 CVEs
Nvr4108 8p 4ks2/l Firmware
nvr4108-8p-4ks2/l_firmware
7 CVEs
Nvr4116 8p 4ks2/l Firmware
nvr4116-8p-4ks2/l_firmware
7 CVEs
Nvr4104hs 4ks2/l Firmware
nvr4104hs-4ks2/l_firmware
7 CVEs
Nvr4108hs 4ks2/l Firmware
nvr4108hs-4ks2/l_firmware
7 CVEs
Nvr4104hs P 4ks2/l Firmware
nvr4104hs-p-4ks2/l_firmware
7 CVEs
Nvr4108hs P 4ks2/l Firmware
nvr4108hs-p-4ks2/l_firmware
7 CVEs
Nvr4108hs 8p 4ks2/l Firmware
nvr4108hs-8p-4ks2/l_firmware
7 CVEs
Nvr4116hs 8p 4ks2/l Firmware
nvr4116hs-8p-4ks2/l_firmware
7 CVEs
Nvr4204 4ks2/l Firmware
nvr4204-4ks2/l_firmware
7 CVEs
Nvr4208 4ks2/l Firmware
nvr4208-4ks2/l_firmware
7 CVEs
Nvr4216 4ks2/l Firmware
nvr4216-4ks2/l_firmware
7 CVEs
Nvr4204 P 4ks2/l Firmware
nvr4204-p-4ks2/l_firmware
7 CVEs
Nvr4208 8p 4ks2/l Firmware
nvr4208-8p-4ks2/l_firmware
7 CVEs
Nvr4216 16p 4ks2/l Firmware
nvr4216-16p-4ks2/l_firmware
7 CVEs
Nvr4232 4ks2/l Firmware
nvr4232-4ks2/l_firmware
7 CVEs
Nvr4232 16p 4ks2/l Firmware
nvr4232-16p-4ks2/l_firmware
7 CVEs
Nvr4116hs 4ks2/l Firmware
nvr4116hs-4ks2/l_firmware
7 CVEs
Nvr4232 4ks3 Firmware
nvr4232-4ks3_firmware
7 CVEs
Nvr4232 16p 4ks3 Firmware
nvr4232-16p-4ks3_firmware
7 CVEs
Nvr4216 4ks3 Firmware
nvr4216-4ks3_firmware
7 CVEs
Nvr4216 16p 4ks3 Firmware
nvr4216-16p-4ks3_firmware
7 CVEs
Nvr4208 8p 4ks3 Firmware
nvr4208-8p-4ks3_firmware
7 CVEs
Nvr4208 4ks3 Firmware
nvr4208-4ks3_firmware
7 CVEs
Nvr4204 P 4ks3 Firmware
nvr4204-p-4ks3_firmware
7 CVEs
Nvr4204 4ks3 Firmware
nvr4204-4ks3_firmware
7 CVEs
Nvr4116hs 8p 4ks3 Firmware
nvr4116hs-8p-4ks3_firmware
7 CVEs
Nvr4116hs 4ks3 Firmware
nvr4116hs-4ks3_firmware
7 CVEs
Nvr4108hs P 4ks3 Firmware
nvr4108hs-p-4ks3_firmware
7 CVEs
Nvr4108hs 8p 4ks3 Firmware
nvr4108hs-8p-4ks3_firmware
7 CVEs
Nvr4108hs 4ks3 Firmware
nvr4108hs-4ks3_firmware
7 CVEs
Nvr4104hs P 4ks3 Firmware
nvr4104hs-p-4ks3_firmware
7 CVEs
Nvr4104hs 4ks3 Firmware
nvr4104hs-4ks3_firmware
7 CVEs
Nvr4116 8p 4ks3 Firmware
nvr4116-8p-4ks3_firmware
7 CVEs
Nvr4116 4ks3 Firmware
nvr4116-4ks3_firmware
7 CVEs
Nvr4108 P 4ks3 Firmware
nvr4108-p-4ks3_firmware
7 CVEs
Nvr4104 4ks3 Firmware
nvr4104-4ks3_firmware
7 CVEs
Nvr4108 8p 4ks3 Firmware
nvr4108-8p-4ks3_firmware
7 CVEs
Nvr4108 4ks3 Firmware
nvr4108-4ks3_firmware
7 CVEs
Nvr4104 P 4ks3 Firmware
nvr4104-p-4ks3_firmware
7 CVEs
Nvr4104hs P 4ks3(960g) Firmware
nvr4104hs-p-4ks3(960g)_firmware
7 CVEs
Nvr4104hs 4ks3(960g) Firmware
nvr4104hs-4ks3(960g)_firmware
7 CVEs
Nvr4108hs 4ks3(960g) Firmware
nvr4108hs-4ks3(960g)_firmware
7 CVEs
Nvr4104 P 4ks3(960g) Firmware
nvr4104-p-4ks3(960g)_firmware
7 CVEs
Sd6al Firmware
sd6al_firmware
6 CVEs
Sd50 Firmware
sd50_firmware
6 CVEs
Sd52c Firmware
sd52c_firmware
6 CVEs
Dvr0404hd A
dvr0404hd-a
5 CVEs
Dvr0404hd L
dvr0404hd-l
5 CVEs
Dvr0404hd S
dvr0404hd-s
5 CVEs
Dvr0404hd U
dvr0404hd-u
5 CVEs
Dvr0404hf A E
dvr0404hf-a-e
5 CVEs
Dvr0404hf Al E
dvr0404hf-al-e
5 CVEs
Dvr0404hf S E
dvr0404hf-s-e
5 CVEs
Dvr0404hf U E
dvr0404hf-u-e
5 CVEs
Dvr0804
dvr0804
5 CVEs
Dvr0804hd L
dvr0804hd-l
5 CVEs
Dvr0804hd S
dvr0804hd-s
5 CVEs
Dvr0804hf A E
dvr0804hf-a-e
5 CVEs
Dvr0804hf Al E
dvr0804hf-al-e
5 CVEs
Dvr0804hf L E
dvr0804hf-l-e
5 CVEs
Dvr0804hf S E
dvr0804hf-s-e
5 CVEs
Dvr0804hf U E
dvr0804hf-u-e
5 CVEs
Dvr1604hd L
dvr1604hd-l
5 CVEs
Dvr1604hd S
dvr1604hd-s
5 CVEs
Dvr1604hf A E
dvr1604hf-a-e
5 CVEs
Dvr1604hf Al E
dvr1604hf-al-e
5 CVEs
Dvr1604hf L E
dvr1604hf-l-e
5 CVEs
Dvr1604hf S E
dvr1604hf-s-e
5 CVEs
Dvr1604hf U E
dvr1604hf-u-e
5 CVEs
Dvr2104c
dvr2104c
5 CVEs
Dvr2104h
dvr2104h
5 CVEs
Dvr2104hc
dvr2104hc
5 CVEs
Dvr2104he
dvr2104he
5 CVEs
Dvr2108c
dvr2108c
5 CVEs
Dvr2108h
dvr2108h
5 CVEs
Dvr2108hc
dvr2108hc
5 CVEs
Dvr2108he
dvr2108he
5 CVEs
Dvr2116c
dvr2116c
5 CVEs
Dvr2116h
dvr2116h
5 CVEs
Dvr2116hc
dvr2116hc
5 CVEs
Dvr2116he
dvr2116he
5 CVEs
Dvr2404hf S
dvr2404hf-s
5 CVEs

CVEs (58)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2024-39950
1Dahuasecurity
58Ipc Hfs8449g Z7 Led Firmware
Ipc Hfs8849g Z3 Led FirmwareNvr4104 4ks2/l Firmware+55 more
Sep 30, 2025
Jul 31, 2024
N/A· v4
9.8 CRITICAL· v3
N/A· v2
A vulnerability has been found in Dahua products. Attackers can send carefully crafted data packets to the interface with vulnerabilities to initiate device initialization.
CVE-2024-39949
1Dahuasecurity
56Nvr4104 4ks2/l Firmware
Nvr4104 4ks3 FirmwareNvr4104 P 4ks2/l Firmware+53 more
Sep 30, 2025
Jul 31, 2024
N/A· v4
7.5 HIGH· v3
N/A· v2
A vulnerability has been found in Dahua products. Attackers can send carefully crafted data packets to the interface with vulnerabilities, causing the device to crash.
CVE-2024-39948
1Dahuasecurity
56Nvr4104 4ks2/l Firmware
Nvr4104 4ks3 FirmwareNvr4104 P 4ks2/l Firmware+53 more
Sep 30, 2025
Jul 31, 2024
N/A· v4
7.5 HIGH· v3
N/A· v2
A vulnerability has been found in Dahua products. Attackers can send carefully crafted data packets to the interface with vulnerabilities, causing the device to crash.
CVE-2024-39947
1Dahuasecurity
56Nvr4104 4ks2/l Firmware
Nvr4104 4ks3 FirmwareNvr4104 P 4ks2/l Firmware+53 more
Aug 19, 2024
Jul 31, 2024
N/A· v4
6.5 MEDIUM· v3
N/A· v2
A vulnerability has been found in Dahua products.After obtaining the ordinary user's username and password, the attacker can send a carefully crafted data packet to the interface with vulnerabilities, causing the device...Show more
A vulnerability has been found in Dahua products.After obtaining the ordinary user's username and password, the attacker can send a carefully crafted data packet to the interface with vulnerabilities, causing the device to crash.Show less
CVE-2024-39946
1Dahuasecurity
56Nvr4104 4ks2/l Firmware
Nvr4104 4ks3 FirmwareNvr4104 P 4ks2/l Firmware+53 more
Aug 19, 2024
Jul 31, 2024
N/A· v4
7.2 HIGH· v3
N/A· v2
A vulnerability has been found in Dahua products.After obtaining the administrator's username and password, the attacker can send a carefully crafted data packet to the interface with vulnerabilities, causing device init...Show more
A vulnerability has been found in Dahua products.After obtaining the administrator's username and password, the attacker can send a carefully crafted data packet to the interface with vulnerabilities, causing device initialization.Show less
CVE-2024-39945
1Dahuasecurity
56Nvr4104 4ks2/l Firmware
Nvr4104 4ks3 FirmwareNvr4104 P 4ks2/l Firmware+53 more
Mar 27, 2025
Jul 31, 2024
N/A· v4
4.9 MEDIUM· v3
N/A· v2
A vulnerability has been found in Dahua products.  After obtaining the administrator's username and password, the attacker can send a carefully crafted data packet to the interface with vulnerabilities, causing the devic...Show more
A vulnerability has been found in Dahua products.  After obtaining the administrator's username and password, the attacker can send a carefully crafted data packet to the interface with vulnerabilities, causing the device to crash.Show less
CVE-2024-39944
1Dahuasecurity
58Ipc Hfs8449g Z7 Led Firmware
Ipc Hfs8849g Z3 Led FirmwareNvr4104 4ks2/l Firmware+55 more
Sep 30, 2025
Jul 31, 2024
N/A· v4
7.5 HIGH· v3
N/A· v2
A vulnerability has been found in Dahua products.Attackers can send carefully crafted data packets to the interface with vulnerabilities, causing the device to crash.
CVE-2023-3836
1Dahuasecurity
1Smart Parking Management
Nov 21, 2024
Jul 22, 2023
N/A· v4
9.8 CRITICAL· v3
6.5 MEDIUM· v2
A vulnerability classified as critical was found in Dahua Smart Park Management up to 20230713. This vulnerability affects unknown code of the file /emap/devicePoint_addImgIco?hasSubsystem=true. The manipulation of the a...Show more
A vulnerability classified as critical was found in Dahua Smart Park Management up to 20230713. This vulnerability affects unknown code of the file /emap/devicePoint_addImgIco?hasSubsystem=true. The manipulation of the argument upload leads to unrestricted upload. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-235162 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2023-3121
1Dahuasecurity
1Smart Parking Management
Nov 21, 2024
Jun 6, 2023
N/A· v4
4.6 MEDIUM· v3
2.7 LOW· v2
A vulnerability has been found in Dahua Smart Parking Management up to 20230528 and classified as problematic. This vulnerability affects unknown code of the file /ipms/imageConvert/image. The manipulation of the argumen...Show more
A vulnerability has been found in Dahua Smart Parking Management up to 20230528 and classified as problematic. This vulnerability affects unknown code of the file /ipms/imageConvert/image. The manipulation of the argument fileUrl leads to server-side request forgery. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-230800. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2022-30564
1Dahuasecurity
97Ipc Hf5241f Ze Firmware
Ipc Hf5442f Ze FirmwareIpc Hf5541f Ze Firmware+94 more
Mar 25, 2025
Feb 9, 2023
N/A· v4
5.3 MEDIUM· v3
N/A· v2
Some Dahua embedded products have a vulnerability of unauthorized modification of the device timestamp. By sending a specially crafted packet to the vulnerable interface, an attacker can modify the device system time.
CVE-2022-45434
1Dahuasecurity
5Dhi Dss4004 S2 Firmware
Dhi Dss7016d S2 FirmwareDhi Dss7016dr S2 Firmware+2 more
Apr 14, 2025
Dec 27, 2022
N/A· v4
5.9 MEDIUM· v3
N/A· v2
Some Dahua software products have a vulnerability of unauthenticated un-throttled ICMP requests on remote DSS Server. After bypassing the firewall access control policy, by sending a specific crafted packet to the vulner...Show more
Some Dahua software products have a vulnerability of unauthenticated un-throttled ICMP requests on remote DSS Server. After bypassing the firewall access control policy, by sending a specific crafted packet to the vulnerable interface, an attacker could exploit the victim server to launch ICMP request attack to the designated target host.Show less
CVE-2022-45433
1Dahuasecurity
5Dhi Dss4004 S2 Firmware
Dhi Dss7016d S2 FirmwareDhi Dss7016dr S2 Firmware+2 more
Apr 14, 2025
Dec 27, 2022
N/A· v4
3.7 LOW· v3
N/A· v2
Some Dahua software products have a vulnerability of unauthenticated traceroute host from remote DSS Server. After bypassing the firewall access control policy, by sending a specific crafted packet to the vulnerable inte...Show more
Some Dahua software products have a vulnerability of unauthenticated traceroute host from remote DSS Server. After bypassing the firewall access control policy, by sending a specific crafted packet to the vulnerable interface, an attacker could get the traceroute results.Show less
CVE-2022-45432
1Dahuasecurity
5Dhi Dss4004 S2 Firmware
Dhi Dss7016d S2 FirmwareDhi Dss7016dr S2 Firmware+2 more
Apr 14, 2025
Dec 27, 2022
N/A· v4
5.3 MEDIUM· v3
N/A· v2
Some Dahua software products have a vulnerability of unauthenticated search for devices. After bypassing the firewall access control policy, by sending a specific crafted packet to the vulnerable interface, an attacker c...Show more
Some Dahua software products have a vulnerability of unauthenticated search for devices. After bypassing the firewall access control policy, by sending a specific crafted packet to the vulnerable interface, an attacker could unauthenticated search for devices in range of IPs from remote DSS Server.Show less
CVE-2022-45431
1Dahuasecurity
5Dhi Dss4004 S2 Firmware
Dhi Dss7016d S2 FirmwareDhi Dss7016dr S2 Firmware+2 more
Apr 11, 2025
Dec 27, 2022
N/A· v4
7.5 HIGH· v3
N/A· v2
Some Dahua software products have a vulnerability of unauthenticated restart of remote DSS Server. After bypassing the firewall access control policy, by sending a specific crafted packet to the vulnerable interface, an...Show more
Some Dahua software products have a vulnerability of unauthenticated restart of remote DSS Server. After bypassing the firewall access control policy, by sending a specific crafted packet to the vulnerable interface, an attacker could unauthenticated restart of remote DSS Server.Show less
CVE-2022-45430
1Dahuasecurity
5Dhi Dss4004 S2 Firmware
Dhi Dss7016d S2 FirmwareDhi Dss7016dr S2 Firmware+2 more
Apr 11, 2025
Dec 27, 2022
N/A· v4
3.7 LOW· v3
N/A· v2
Some Dahua software products have a vulnerability of unauthenticated enable or disable SSHD service. After bypassing the firewall access control policy, by sending a specific crafted packet to the vulnerable interface, a...Show more
Some Dahua software products have a vulnerability of unauthenticated enable or disable SSHD service. After bypassing the firewall access control policy, by sending a specific crafted packet to the vulnerable interface, an attacker could enable or disable the SSHD service.Show less
CVE-2022-45429
1Dahuasecurity
5Dhi Dss4004 S2 Firmware
Dhi Dss7016d S2 FirmwareDhi Dss7016dr S2 Firmware+2 more
Apr 12, 2025
Dec 27, 2022
N/A· v4
7.5 HIGH· v3
N/A· v2
Some Dahua software products have a vulnerability of server-side request forgery (SSRF). An Attacker can access internal resources by concatenating links (URL) that conform to specific rules.
CVE-2022-45428
1Dahuasecurity
5Dhi Dss4004 S2 Firmware
Dhi Dss7016d S2 FirmwareDhi Dss7016dr S2 Firmware+2 more
Apr 14, 2025
Dec 27, 2022
N/A· v4
2.7 LOW· v3
N/A· v2
Some Dahua software products have a vulnerability of sensitive information leakage. After obtaining the permissions of administrators, by sending a specific crafted packet to the vulnerable interface, an attacker can obt...Show more
Some Dahua software products have a vulnerability of sensitive information leakage. After obtaining the permissions of administrators, by sending a specific crafted packet to the vulnerable interface, an attacker can obtain the debugging information.Show less
CVE-2022-45427
1Dahuasecurity
5Dhi Dss4004 S2 Firmware
Dhi Dss7016d S2 FirmwareDhi Dss7016dr S2 Firmware+2 more
Apr 14, 2025
Dec 27, 2022
N/A· v4
7.2 HIGH· v3
N/A· v2
Some Dahua software products have a vulnerability of unrestricted upload of file. After obtaining the permissions of administrators, by sending a specific crafted packet to the vulnerable interface, an attacker can uploa...Show more
Some Dahua software products have a vulnerability of unrestricted upload of file. After obtaining the permissions of administrators, by sending a specific crafted packet to the vulnerable interface, an attacker can upload arbitrary files.Show less
CVE-2022-45426
1Dahuasecurity
5Dhi Dss4004 S2 Firmware
Dhi Dss7016d S2 FirmwareDhi Dss7016dr S2 Firmware+2 more
Apr 14, 2025
Dec 27, 2022
N/A· v4
6.5 MEDIUM· v3
N/A· v2
Some Dahua software products have a vulnerability of unrestricted download of file. After obtaining the permissions of ordinary users, by sending a specific crafted packet to the vulnerable interface, an attacker can dow...Show more
Some Dahua software products have a vulnerability of unrestricted download of file. After obtaining the permissions of ordinary users, by sending a specific crafted packet to the vulnerable interface, an attacker can download arbitrary files.Show less
CVE-2022-45425
1Dahuasecurity
5Dhi Dss4004 S2 Firmware
Dhi Dss7016d S2 FirmwareDhi Dss7016dr S2 Firmware+2 more
Apr 14, 2025
Dec 27, 2022
N/A· v4
7.5 HIGH· v3
N/A· v2
Some Dahua software products have a vulnerability of using of hard-coded cryptographic key. An attacker can obtain the AES crypto key by exploiting this vulnerability.