Home
Bugtraq
Full List
Only Bugs
Only Tricks
Only Exploits
Only Dorks
Only CVE
Only CWE
Fake Notes
Ranking
CVEMAP
Full List
Show Vendors
Show Products
CWE Dictionary
Check CVE Id
Check CWE Id
Search
Bugtraq
CVEMAP
By author
CVE Id
CWE Id
By vendors
By products
RSS
Bugtraq
CVEMAP
CVE Products
Bugs
Exploits
Dorks
More
cIFrex
Facebook
Twitter
Donate
About
Submit
Vulnerabilities for
'Nvr firmware'
2017-03-09
CVE-2017-6432
CWE-319
An issue was discovered on Dahua DHI-HCVR7216A-S3 3.210.0001.10 build 2016-06-06 devices. The Dahua DVR Protocol, which operates on TCP Port 37777, is an unencrypted, binary protocol. Performing a Man-in-the-Middle attack allows both sniffing and injections of packets, which allows creation of fully privileged new users, in addition to capture of sensitive information.
2017-02-27
CVE-2017-6343
CWE-287
The web interface on Dahua DHI-HCVR7216A-S3 devices with NVR Firmware 3.210.0001.10 2016-06-06, Camera Firmware 2.400.0000.28.R 2016-03-29, and SmartPSS Software 1.16.1 2017-01-19 allows remote attackers to obtain login access by leveraging knowledge of the MD5 Admin Hash without knowledge of the corresponding password, a different vulnerability than CVE-2013-6117.
CVE-2017-6342
CWE-269
An issue was discovered on Dahua DHI-HCVR7216A-S3 devices with NVR Firmware 3.210.0001.10 2016-06-06, Camera Firmware 2.400.0000.28.R 2016-03-29, and SmartPSS Software 1.16.1 2017-01-19. When SmartPSS Software is launched, while on the login screen, the software in the background automatically logs in as admin. This allows sniffing sensitive information identified in CVE-2017-6341 without prior knowledge of the password. This is a different vulnerability than CVE-2013-6117.
CVE-2017-6341
CWE-319
Dahua DHI-HCVR7216A-S3 devices with NVR Firmware 3.210.0001.10 2016-06-06, Camera Firmware 2.400.0000.28.R 2016-03-29, and SmartPSS Software 1.16.1 2017-01-19 send cleartext passwords in response to requests from the Web Page, Mobile Application, and Desktop Application interfaces, which allows remote attackers to obtain sensitive information by sniffing the network, a different vulnerability than CVE-2013-6117.
>>>
Vendor:
Dahuasecurity
120
Products
Dvr0404hd-a
Dvr0404hd-l
Dvr0404hd-s
Dvr0404hd-u
Dvr0404hf-a-e
Dvr0404hf-al-e
Dvr0404hf-s-e
Dvr0404hf-u-e
Dvr0804
Dvr0804hd-l
Dvr0804hd-s
Dvr0804hf-a-e
Dvr0804hf-al-e
Dvr0804hf-l-e
Dvr0804hf-s-e
Dvr0804hf-u-e
Dvr1604hd-l
Dvr1604hd-s
Dvr1604hf-a-e
Dvr1604hf-al-e
Dvr1604hf-l-e
Dvr1604hf-s-e
Dvr1604hf-u-e
Dvr2104c
Dvr2104h
Dvr2104hc
Dvr2104he
Dvr2108c
Dvr2108h
Dvr2108hc
Dvr2108he
Dvr2116c
Dvr2116h
Dvr2116hc
Dvr2116he
Dvr2404hf-s
Dvr2404lf-al
Dvr2404lf-s
Dvr3204hf-s
Dvr3204lf-al
Dvr3204lf-s
Dvr3224l
Dvr3232l
Dvr5104c
Dvr5104h
Dvr5104he
Dvr5108c
Dvr5108h
Dvr5108he
Dvr5116c
Dvr5116h
Dvr5116he
Dvr5204a
Dvr5204l
Dvr5208a
Dvr5208l
Dvr5216a
Dvr5216l
Dvr5404
Dvr5408
Dvr5416
Dvr5804
Dvr5808
Dvr5816
Dvr6404lf-s
Dvr firmware
Ip camera firmware
Nvr firmware
Smartpss firmware
Camera firmware
Dhi-hcvr58a32s-s2 firmware
Dh-ipc-hdw2xxx firmware
Dhi-hcvr51a04he-s3 firmware
Dh-nvr1xxx firmware
Dh-ipc-hdbw13a0sn firmware
Dh-ipc-hdw4xxx firmware
Dh-ipc-hfw1xxx firmware
Dh-hcvr4xxx firmware
Dh-ipc-hdbw23a0rn-zs firmware
Dh-sd6cxx firmware
Dh-ipc-hfw4xxx firmware
Dhi-hcvr51a08he-s3 firmware
Dh-hcvr5xxx firmware
Dh-ipc-hfw2xxx firmware
Dh-ipc-hdw1xxx firmware
Ipc-hdbw4x00 firmware
Ipc-hdbw5x00 firmware
Ipc-hdw4300s firmware
Ipc-hdw4x00 firmware
Ipc-hdw5x00 firmware
Ipc-hf5x00 firmware
Ipc-hfw4x00 firmware
Ipc-hfw5x00 firmware
Nvr11hs firmware
Dh-sd2xxxxx firmware
Dh-sd4xxxxx firmware
Dh-sd5xxxxx firmware
Dh-sd6xxxxx firmware
Ipc-ebw8xxx firmware
Ipc-hdbw1xxx firmware
See all Products for Vendor
Dahuasecurity
Copyright
2024
, cxsecurity.com
Back to Top