TROYANOSYVIRUS
Back to CVEs

CVE-2013-3612

N/A

Description

Dahua DVR appliances have a hardcoded password for (1) the root account and (2) an unspecified "backdoor" account, which makes it easier for remote attackers to obtain administrative access via authorization requests involving (a) ActiveX, (b) a standalone client, or (c) unknown other vectors.

CVE Details

CVSS v3.1 ScoreN/A
Published9/17/2013
Last Modified4/11/2025
Sourcenvd
Honeypot Sightings0

Affected Products

dahuasecurity:dvr0404hd-adahuasecurity:dvr0404hd-ldahuasecurity:dvr0404hd-sdahuasecurity:dvr0404hd-udahuasecurity:dvr0404hf-a-edahuasecurity:dvr0404hf-al-edahuasecurity:dvr0404hf-s-edahuasecurity:dvr0404hf-u-edahuasecurity:dvr0804dahuasecurity:dvr0804hd-ldahuasecurity:dvr0804hd-sdahuasecurity:dvr0804hf-a-edahuasecurity:dvr0804hf-al-edahuasecurity:dvr0804hf-l-edahuasecurity:dvr0804hf-s-edahuasecurity:dvr0804hf-u-edahuasecurity:dvr1604hd-ldahuasecurity:dvr1604hd-sdahuasecurity:dvr1604hf-a-edahuasecurity:dvr1604hf-al-edahuasecurity:dvr1604hf-l-edahuasecurity:dvr1604hf-s-edahuasecurity:dvr1604hf-u-edahuasecurity:dvr2104cdahuasecurity:dvr2104hdahuasecurity:dvr2104hcdahuasecurity:dvr2104hedahuasecurity:dvr2108cdahuasecurity:dvr2108hdahuasecurity:dvr2108hcdahuasecurity:dvr2108hedahuasecurity:dvr2116cdahuasecurity:dvr2116hdahuasecurity:dvr2116hcdahuasecurity:dvr2116hedahuasecurity:dvr2404hf-sdahuasecurity:dvr2404lf-aldahuasecurity:dvr2404lf-sdahuasecurity:dvr3204hf-sdahuasecurity:dvr3204lf-aldahuasecurity:dvr3204lf-sdahuasecurity:dvr3224ldahuasecurity:dvr3232ldahuasecurity:dvr5104cdahuasecurity:dvr5104hdahuasecurity:dvr5104hedahuasecurity:dvr5108cdahuasecurity:dvr5108hdahuasecurity:dvr5108hedahuasecurity:dvr5116cdahuasecurity:dvr5116hdahuasecurity:dvr5116hedahuasecurity:dvr5204adahuasecurity:dvr5204ldahuasecurity:dvr5208adahuasecurity:dvr5208ldahuasecurity:dvr5216adahuasecurity:dvr5216ldahuasecurity:dvr5404dahuasecurity:dvr5408dahuasecurity:dvr5416dahuasecurity:dvr5804dahuasecurity:dvr5808dahuasecurity:dvr5816dahuasecurity:dvr6404lf-s

Weaknesses (CWE)

CWE-255

References

http://www.kb.cert.org/vuls/id/800094(cret@cert.org)
http://www.kb.cert.org/vuls/id/800094(af854a3a-2127-422b-91ae-364da2661108)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.