CVE-2013-5754
Severity Score
9.8
*CVSS v3
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The authorization implementation on Dahua DVR appliances accepts a hash string representing the current date for the role of a master password, which makes it easier for remote attackers to obtain administrative access and change the administrator password via requests involving (1) ActiveX, (2) a standalone client, or (3) unspecified other vectors, a different vulnerability than CVE-2013-3612.
La implementación de autorización en Dahua DVR acepta un hash representando la fecha actual para el rol de contraseña maestra, lo que hace más fácil para un atacante remoto obtener acceso administrativo y cambiar la contraseña de administrador a través de peticiones (1) ActiveX, (2) cliente standalone o (3) vectores no especificados, una vulnerabilidad diferente a CVE-2013-3612
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2013-09-17 CVE Reserved
- 2013-09-17 CVE Published
- 2024-09-16 CVE Updated
- 2024-09-17 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-264: Permissions, Privileges, and Access Controls
CAPEC
References (1)
| URL | Tag | Source |
|---|---|---|
| http://www.kb.cert.org/vuls/id/800094 | Third Party Advisory |
|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr0404hd-a Search vendor "Dahuasecurity" for product "Dvr0404hd-a" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr0404hd-l Search vendor "Dahuasecurity" for product "Dvr0404hd-l" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr0404hd-s Search vendor "Dahuasecurity" for product "Dvr0404hd-s" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr0404hd-u Search vendor "Dahuasecurity" for product "Dvr0404hd-u" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr0404hf-a-e Search vendor "Dahuasecurity" for product "Dvr0404hf-a-e" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr0404hf-al-e Search vendor "Dahuasecurity" for product "Dvr0404hf-al-e" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr0404hf-s-e Search vendor "Dahuasecurity" for product "Dvr0404hf-s-e" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr0404hf-u-e Search vendor "Dahuasecurity" for product "Dvr0404hf-u-e" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr0804 Search vendor "Dahuasecurity" for product "Dvr0804" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr0804hd-l Search vendor "Dahuasecurity" for product "Dvr0804hd-l" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr0804hd-s Search vendor "Dahuasecurity" for product "Dvr0804hd-s" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr0804hf-a-e Search vendor "Dahuasecurity" for product "Dvr0804hf-a-e" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr0804hf-al-e Search vendor "Dahuasecurity" for product "Dvr0804hf-al-e" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr0804hf-l-e Search vendor "Dahuasecurity" for product "Dvr0804hf-l-e" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr0804hf-s-e Search vendor "Dahuasecurity" for product "Dvr0804hf-s-e" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr0804hf-u-e Search vendor "Dahuasecurity" for product "Dvr0804hf-u-e" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr1604hd-l Search vendor "Dahuasecurity" for product "Dvr1604hd-l" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr1604hd-s Search vendor "Dahuasecurity" for product "Dvr1604hd-s" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr1604hf-a-e Search vendor "Dahuasecurity" for product "Dvr1604hf-a-e" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr1604hf-al-e Search vendor "Dahuasecurity" for product "Dvr1604hf-al-e" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr1604hf-l-e Search vendor "Dahuasecurity" for product "Dvr1604hf-l-e" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr1604hf-s-e Search vendor "Dahuasecurity" for product "Dvr1604hf-s-e" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr1604hf-u-e Search vendor "Dahuasecurity" for product "Dvr1604hf-u-e" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr2104c Search vendor "Dahuasecurity" for product "Dvr2104c" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr2104h Search vendor "Dahuasecurity" for product "Dvr2104h" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr2104hc Search vendor "Dahuasecurity" for product "Dvr2104hc" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr2104he Search vendor "Dahuasecurity" for product "Dvr2104he" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr2108c Search vendor "Dahuasecurity" for product "Dvr2108c" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr2108h Search vendor "Dahuasecurity" for product "Dvr2108h" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr2108hc Search vendor "Dahuasecurity" for product "Dvr2108hc" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr2108he Search vendor "Dahuasecurity" for product "Dvr2108he" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr2116c Search vendor "Dahuasecurity" for product "Dvr2116c" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr2116h Search vendor "Dahuasecurity" for product "Dvr2116h" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr2116hc Search vendor "Dahuasecurity" for product "Dvr2116hc" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr2116he Search vendor "Dahuasecurity" for product "Dvr2116he" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr2404hf-s Search vendor "Dahuasecurity" for product "Dvr2404hf-s" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr2404lf-al Search vendor "Dahuasecurity" for product "Dvr2404lf-al" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr2404lf-s Search vendor "Dahuasecurity" for product "Dvr2404lf-s" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr3204hf-s Search vendor "Dahuasecurity" for product "Dvr3204hf-s" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr3204lf-al Search vendor "Dahuasecurity" for product "Dvr3204lf-al" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr3204lf-s Search vendor "Dahuasecurity" for product "Dvr3204lf-s" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr3224l Search vendor "Dahuasecurity" for product "Dvr3224l" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr3232l Search vendor "Dahuasecurity" for product "Dvr3232l" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr5104c Search vendor "Dahuasecurity" for product "Dvr5104c" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr5104h Search vendor "Dahuasecurity" for product "Dvr5104h" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr5104he Search vendor "Dahuasecurity" for product "Dvr5104he" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr5108c Search vendor "Dahuasecurity" for product "Dvr5108c" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr5108h Search vendor "Dahuasecurity" for product "Dvr5108h" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr5108he Search vendor "Dahuasecurity" for product "Dvr5108he" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr5116c Search vendor "Dahuasecurity" for product "Dvr5116c" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr5116h Search vendor "Dahuasecurity" for product "Dvr5116h" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr5116he Search vendor "Dahuasecurity" for product "Dvr5116he" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr5204a Search vendor "Dahuasecurity" for product "Dvr5204a" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr5204l Search vendor "Dahuasecurity" for product "Dvr5204l" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr5208a Search vendor "Dahuasecurity" for product "Dvr5208a" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr5208l Search vendor "Dahuasecurity" for product "Dvr5208l" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr5216a Search vendor "Dahuasecurity" for product "Dvr5216a" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr5216l Search vendor "Dahuasecurity" for product "Dvr5216l" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr5404 Search vendor "Dahuasecurity" for product "Dvr5404" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr5408 Search vendor "Dahuasecurity" for product "Dvr5408" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr5416 Search vendor "Dahuasecurity" for product "Dvr5416" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr5804 Search vendor "Dahuasecurity" for product "Dvr5804" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr5808 Search vendor "Dahuasecurity" for product "Dvr5808" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr5816 Search vendor "Dahuasecurity" for product "Dvr5816" | - | - |
Affected
| ||||||
| Dahuasecurity Search vendor "Dahuasecurity" | Dvr6404lf-s Search vendor "Dahuasecurity" for product "Dvr6404lf-s" | - | - |
Affected
| ||||||