Description
Dahua DVR appliances have a hardcoded password for (1) the root account and (2) an unspecified "backdoor" account, which makes it easier for remote attackers to obtain administrative access via authorization requests involving (a) ActiveX, (b) a standalone client, or (c) unknown other vectors.
Published: 2013-09-17
Score: 10.0 Critical
EPSS: 12.1% Moderate
KEV: No
Impact: n/a
Action: n/a
AI Analysis

No analysis available yet.

Remediation

No remediation available yet.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

References
Link Providers
http://www.kb.cert.org/vuls/id/800094 cve-icon cve-icon
History

Fri, 11 Jul 2025 13:45:00 +0000

Type Values Removed Values Added
Metrics epss

{'score': 0.10964}

 epss

{'score': 0.14687}

Subscriptions

Dahuasecurity Dvr0404hd-a Dvr0404hd-l Dvr0404hd-s Dvr0404hd-u Dvr0404hf-a-e Dvr0404hf-al-e Dvr0404hf-s-e Dvr0404hf-u-e Dvr0804 Dvr0804hd-l Dvr0804hd-s Dvr0804hf-a-e Dvr0804hf-al-e Dvr0804hf-l-e Dvr0804hf-s-e Dvr0804hf-u-e Dvr1604hd-l Dvr1604hd-s Dvr1604hf-a-e Dvr1604hf-al-e Dvr1604hf-l-e Dvr1604hf-s-e Dvr1604hf-u-e Dvr2104c Dvr2104h Dvr2104hc Dvr2104he Dvr2108c Dvr2108h Dvr2108hc Dvr2108he Dvr2116c Dvr2116h Dvr2116hc Dvr2116he Dvr2404hf-s Dvr2404lf-al Dvr2404lf-s Dvr3204hf-s Dvr3204lf-al Dvr3204lf-s Dvr3224l Dvr3232l Dvr5104c Dvr5104h Dvr5104he Dvr5108c Dvr5108h Dvr5108he Dvr5116c Dvr5116h Dvr5116he Dvr5204a Dvr5204l Dvr5208a Dvr5208l Dvr5216a Dvr5216l Dvr5404 Dvr5408 Dvr5416 Dvr5804 Dvr5808 Dvr5816 Dvr6404lf-s
cve-icon MITRE

Status: PUBLISHED

Assigner: certcc

Published:

Updated: 2024-09-16T22:44:59.973Z

Reserved: 2013-05-21T00:00:00.000Z

Link: CVE-2013-3612

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Deferred

Published: 2013-09-17T12:04:24.743

Modified: 2025-04-11T00:51:21.963

Link: CVE-2013-3612

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses