Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2021-33044 PoC — Dahua IPC 授权问题漏洞

Source
https://github.com/Spy0x7/CVE-2021-33044
Associated Vulnerability
Title:Dahua IPC 授权问题漏洞 (CVE-2021-33044)
Description:Dahua IPC是中国大华(Dahua)公司的大华的一系列工控机。 Dahua IPC存在安全漏洞,攻击者可利用该漏洞通过构造恶意数据包绕过设备身份验证
Description
Dahua   IPC/VTH/VTO devices auth bypass exploit
Readme
# CVE-2021-33044
Dahua   IPC/VTH/VTO devices auth bypass exploit

About:

The identity authentication bypass vulnerability found in some Dahua products during the login process. Attackers can bypass device identity authentication by constructing malicious data packets.


```
use - python3 dahua_exploit.py http(s)://ip:port

```
File Snapshot

 [4.0K]  /data/pocs/6f19d872f83197e62094269eb5628093f747590d
├── [1.3K]  dahua_bypass.py
└── [ 332]  README.md

0 directories, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.