Some Dahua software products have a vulnerability of unauthenticated request of AES crypto key. An attacker can obtain the AES crypto key by sending a specific crafted packet to the vulnerable interface.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: dahua
Published: 2022-12-27T00:00:00
Updated: 2024-08-03T14:09:57.062Z
Reserved: 2022-11-14T00:00:00
Link: CVE-2022-45424
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2022-12-27T18:15:10.450
Modified: 2023-08-08T14:22:24.967
Link: CVE-2022-45424
Redhat
No data.