RSS   Vulnerabilities for 'Nvr firmware'   RSS

2017-03-09
 
CVE-2017-6432

 

 
An issue was discovered on Dahua DHI-HCVR7216A-S3 3.210.0001.10 build 2016-06-06 devices. The Dahua DVR Protocol, which operates on TCP Port 37777, is an unencrypted, binary protocol. Performing a Man-in-the-Middle attack allows both sniffing and injections of packets, which allows creation of fully privileged new users, in addition to capture of sensitive information.

 
2017-02-27
 
CVE-2017-6343

 

 
The web interface on Dahua DHI-HCVR7216A-S3 devices with NVR Firmware 3.210.0001.10 2016-06-06, Camera Firmware 2.400.0000.28.R 2016-03-29, and SmartPSS Software 1.16.1 2017-01-19 allows remote attackers to obtain login access by leveraging knowledge of the MD5 Admin Hash without knowledge of the corresponding password, a different vulnerability than CVE-2013-6117.

 
 
CVE-2017-6342

 

 
An issue was discovered on Dahua DHI-HCVR7216A-S3 devices with NVR Firmware 3.210.0001.10 2016-06-06, Camera Firmware 2.400.0000.28.R 2016-03-29, and SmartPSS Software 1.16.1 2017-01-19. When SmartPSS Software is launched, while on the login screen, the software in the background automatically logs in as admin. This allows sniffing sensitive information identified in CVE-2017-6341 without prior knowledge of the password. This is a different vulnerability than CVE-2013-6117.

 
 
CVE-2017-6341

 

 
Dahua DHI-HCVR7216A-S3 devices with NVR Firmware 3.210.0001.10 2016-06-06, Camera Firmware 2.400.0000.28.R 2016-03-29, and SmartPSS Software 1.16.1 2017-01-19 send cleartext passwords in response to requests from the Web Page, Mobile Application, and Desktop Application interfaces, which allows remote attackers to obtain sensitive information by sniffing the network, a different vulnerability than CVE-2013-6117.

 

 >>> Vendor: Dahuasecurity 119 Products
Dvr0404hd-a
Dvr0404hd-l
Dvr0404hd-s
Dvr0404hd-u
Dvr0404hf-a-e
Dvr0404hf-al-e
Dvr0404hf-s-e
Dvr0404hf-u-e
Dvr0804
Dvr0804hd-l
Dvr0804hd-s
Dvr0804hf-a-e
Dvr0804hf-al-e
Dvr0804hf-l-e
Dvr0804hf-s-e
Dvr0804hf-u-e
Dvr1604hd-l
Dvr1604hd-s
Dvr1604hf-a-e
Dvr1604hf-al-e
Dvr1604hf-l-e
Dvr1604hf-s-e
Dvr1604hf-u-e
Dvr2104c
Dvr2104h
Dvr2104hc
Dvr2104he
Dvr2108c
Dvr2108h
Dvr2108hc
Dvr2108he
Dvr2116c
Dvr2116h
Dvr2116hc
Dvr2116he
Dvr2404hf-s
Dvr2404lf-al
Dvr2404lf-s
Dvr3204hf-s
Dvr3204lf-al
Dvr3204lf-s
Dvr3224l
Dvr3232l
Dvr5104c
Dvr5104h
Dvr5104he
Dvr5108c
Dvr5108h
Dvr5108he
Dvr5116c
Dvr5116h
Dvr5116he
Dvr5204a
Dvr5204l
Dvr5208a
Dvr5208l
Dvr5216a
Dvr5216l
Dvr5404
Dvr5408
Dvr5416
Dvr5804
Dvr5808
Dvr5816
Dvr6404lf-s
Dvr firmware
Nvr firmware
Smartpss firmware
Camera firmware
Ip camera firmware
Dhi-hcvr58a32s-s2 firmware
Dh-ipc-hdw2xxx firmware
Dhi-hcvr51a04he-s3 firmware
Dh-nvr1xxx firmware
Dh-ipc-hdbw13a0sn firmware
Dh-ipc-hdw4xxx firmware
Dh-ipc-hfw1xxx firmware
Dh-hcvr4xxx firmware
Dh-ipc-hdbw23a0rn-zs firmware
Dh-sd6cxx firmware
Dh-ipc-hfw4xxx firmware
Dhi-hcvr51a08he-s3 firmware
Dh-hcvr5xxx firmware
Dh-ipc-hfw2xxx firmware
Dh-ipc-hdw1xxx firmware
Ipc-hdbw4x00 firmware
Ipc-hdbw5x00 firmware
Ipc-hdw4300s firmware
Ipc-hdw4x00 firmware
Ipc-hdw5x00 firmware
Ipc-hf5x00 firmware
Ipc-hfw4x00 firmware
Ipc-hfw5x00 firmware
Nvr11hs firmware
Dh-sd2xxxxx firmware
Dh-sd4xxxxx firmware
Dh-sd5xxxxx firmware
Dh-sd6xxxxx firmware
Ipc-ebw8xxx firmware
Ipc-hdbw1xxx firmware
See all Products for Vendor Dahuasecurity


Copyright 2019, cxsecurity.com

 

Back to Top