Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The authorization implementation on Dahua DVR appliances accepts a hash string representing the current date for the role of a master password, which makes it easier for remote attackers to obtain administrative access and change the administrator password via requests involving (1) ActiveX, (2) a standalone client, or (3) unspecified other vectors, a different vulnerability than CVE-2013-3612.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Dahua DVR授权实现安全漏洞
Vulnerability Description
Dahua DVR是中国大华(Dahua)公司的硬盘录像机产品。 Dahua DVR设备中的授权实现中存在安全漏洞,该漏洞源于程序使用当前日期的哈希作为主密码。远程攻击者可利用该漏洞获取管理访问权限并修改管理员密码。
CVSS Information
N/A
Vulnerability Type
N/A