Max CVSS 10.0 Min CVSS 4.3 Total Count6
IDCVSSSummaryLast (major) updatePublished
CVE-2013-6117 7.5
Dahua DVR 2.608.0000.0 and 2.608.GV00.0 allows remote attackers to bypass authentication and obtain sensitive information including user credentials, change user passwords, clear log files, and perform other actions via a request to TCP port 37777.
14-07-2014 - 09:33 11-07-2014 - 15:55
CVE-2013-3614 9.3
Dahua DVR appliances have a small value for the maximum password length, which makes it easier for remote attackers to obtain access via a brute-force attack.
25-09-2013 - 14:07 17-09-2013 - 08:04
CVE-2013-3615 7.8
Dahua DVR appliances use a password-hash algorithm with a short hash length, which makes it easier for context-dependent attackers to discover cleartext passwords via a brute-force attack.
17-09-2013 - 14:37 17-09-2013 - 08:04
CVE-2013-3613 7.8
Dahua DVR appliances do not properly restrict UPnP requests, which makes it easier for remote attackers to obtain access via vectors involving a replay attack against the TELNET port.
17-09-2013 - 14:35 17-09-2013 - 08:04
CVE-2013-3612 10.0
Dahua DVR appliances have a hardcoded password for (1) the root account and (2) an unspecified "backdoor" account, which makes it easier for remote attackers to obtain administrative access via authorization requests involving (a) ActiveX, (b) a stan
17-09-2013 - 12:15 17-09-2013 - 08:04
CVE-2006-3109 4.3
Cross-site scripting (XSS) vulnerability in Cisco CallManager 3.3 before 3.3(5)SR3, 4.1 before 4.1(3)SR4, 4.2 before 4.2(3), and 4.3 before 4.3(1), allows remote attackers to inject arbitrary web script or HTML via the (1) pattern parameter in ccmadm
07-03-2011 - 21:37 20-06-2006 - 21:02
Back to Top Mark selected
Back to Top