Vulnerabilities (CVE)

Filtered by vendor Dahuasecurity Subscribe

Filtered by product Ipc-hx2xxx Firmware

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2021-33046	1 Dahuasecurity	56 Asc2204c, Asc2204c Firmware, Hcvr7xxx and 53 more	2022-01-25	7.5 HIGH	9.8 CRITICAL
Some Dahua products have access control vulnerability in the password reset process. Attackers can exploit this vulnerability through specific deployments to reset device passwords.
CVE-2020-9502	1 Dahuasecurity	40 Ipc-hdbw1320e-w, Ipc-hdbw1320e-w Firmware, Ipc-hx2xxx and 37 more	2020-05-18	7.5 HIGH	9.8 CRITICAL
Some Dahua products with Build time before December 2019 have Session ID predictable vulnerabilities. During normal user access, an attacker can use the predicted Session ID to construct a data packet to attack the device.