Attackers could exploit a buffer overflow vulnerability by sending specially crafted malicious packets, potentially causing service disruption (e.g., crashes) or remote code execution (RCE). Some devices may have deployed protection mechanisms such as Address Space Layout Randomization (ASLR), which reduces the likelihood of successful RCE exploitation. However, denial-of-service (DoS) attacks remain a concern.
Metrics
Affected Vendors & Products
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
Wed, 23 Jul 2025 17:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Dahua
Dahua ipc Dahua sd |
|
Vendors & Products |
Dahua
Dahua ipc Dahua sd |
Wed, 23 Jul 2025 15:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-120 | |
Metrics |
ssvc
|
Wed, 23 Jul 2025 07:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A vulnerability has been found in Dahua products. Attackers could exploit a buffer overflow vulnerability by sending specially crafted malicious packets, potentially causing service disruption (e.g., crashes) or remote code execution (RCE). Some devices may have deployed protection mechanisms such as Address Space Layout Randomization (ASLR), which reduces the likelihood of successful RCE exploitation. However, denial-of-service (DoS) attacks remain a concern. | |
References |
| |
Metrics |
cvssV3_1
|

Status: PUBLISHED
Assigner: dahua
Published:
Updated: 2025-07-23T14:19:19.313Z
Reserved: 2025-04-01T05:57:11.782Z
Link: CVE-2025-31700

Updated: 2025-07-23T14:19:11.275Z

Status : Awaiting Analysis
Published: 2025-07-23T07:15:24.987
Modified: 2025-07-25T15:29:44.523
Link: CVE-2025-31700

No data.

Updated: 2025-07-23T17:35:47Z