CVSS: 5.3EPSS: 0%CPEs: 194EXPL: 0CVE-2022-30564
https://notcve.org/view.php?id=CVE-2022-30564
09 Feb 2023 — Some Dahua embedded products have a vulnerability of unauthorized modification of the device timestamp. By sending a specially crafted packet to the vulnerable interface, an attacker can modify the device system time. • https://www.dahuasecurity.com/support/cybersecurity/details/1147 •
CVSS: 8.8EPSS: 0%CPEs: 44EXPL: 0CVE-2017-9314
https://notcve.org/view.php?id=CVE-2017-9314
13 Nov 2017 — Authentication vulnerability found in Dahua NVR models NVR50XX, NVR52XX, NVR54XX, NVR58XX with software before DH_NVR5xxx_Eng_P_V2.616.0000.0.R.20171102. Attacker could exploit this vulnerability to gain access to additional operations by means of forging json message. Se ha encontrado una vulnerabilidad de autenticación en Dahua NVR, modelos NVR50XX, NVR52XX, NVR54XX y NVR58XX con software anterior a DH_NVR5xxx_Eng_P_V2.616.0000.0.R.20171102. Un atacante podría explotar esta vulnerabilidad para obtener acc... • http://www.dahuasecurity.com/annoucementsingle/security-advisory--authentication-vulnerability-found-in-some-dahua-nvr_14731_211.html • CWE-287: Improper Authentication •