CVSS: 3.7EPSS: 0%CPEs: 26EXPL: 0CVE-2022-45433
https://notcve.org/view.php?id=CVE-2022-45433
27 Dec 2022 — Some Dahua software products have a vulnerability of unauthenticated traceroute host from remote DSS Server. After bypassing the firewall access control policy, by sending a specific crafted packet to the vulnerable interface, an attacker could get the traceroute results. Algunos productos de software de Dahua tienen una vulnerabilidad de host de traceroute no autenticado desde un servidor DSS remoto. Después de omitir la política de control de acceso del firewall, al enviar un paquete manipulado específica... • https://www.dahuasecurity.com/support/cybersecurity/details/1137 •
CVSS: 5.9EPSS: 0%CPEs: 26EXPL: 0CVE-2022-45434
https://notcve.org/view.php?id=CVE-2022-45434
27 Dec 2022 — Some Dahua software products have a vulnerability of unauthenticated un-throttled ICMP requests on remote DSS Server. After bypassing the firewall access control policy, by sending a specific crafted packet to the vulnerable interface, an attacker could exploit the victim server to launch ICMP request attack to the designated target host. Algunos productos de software de Dahua tienen una vulnerabilidad de solicitudes ICMP no autenticadas y no limitadas en un servidor DSS remoto. Después de omitir la polític... • https://www.dahuasecurity.com/support/cybersecurity/details/1137 •