Dahuasecurity Dhi-dss4004-s2 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Dahuasecurity Dhi-dss4004-s2 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (12)
CVE-2022-45423 — CVSS 7.5 (high): Some Dahua software products have a vulnerability of unauthenticated request of MQTT credentials. An attacker can obtain encrypted MQTT…
CVE-2022-45425 — CVSS 7.5 (high): Some Dahua software products have a vulnerability of using of hard-coded cryptographic key. An attacker can obtain the AES crypto key by…
CVE-2022-45429 — CVSS 7.5 (high): Some Dahua software products have a vulnerability of server-side request forgery (SSRF). An Attacker can access internal resources by…
CVE-2022-45431 — CVSS 7.5 (high): Some Dahua software products have a vulnerability of unauthenticated restart of remote DSS Server. After bypassing the firewall access…
CVE-2022-45427 — CVSS 7.2 (high): Some Dahua software products have a vulnerability of unrestricted upload of file. After obtaining the permissions of administrators, by…
CVE-2022-45426 — CVSS 6.5 (medium): Some Dahua software products have a vulnerability of unrestricted download of file. After obtaining the permissions of ordinary users, by…
CVE-2022-45434 — CVSS 5.9 (medium): Some Dahua software products have a vulnerability of unauthenticated un-throttled ICMP requests on remote DSS Server. After bypassing the…
CVE-2022-45424 — CVSS 5.3 (medium): Some Dahua software products have a vulnerability of unauthenticated request of AES crypto key. An attacker can obtain the AES crypto key…
CVE-2022-45432 — CVSS 5.3 (medium): Some Dahua software products have a vulnerability of unauthenticated search for devices. After bypassing the firewall access control…
CVE-2022-45433 — CVSS 3.7 (low): Some Dahua software products have a vulnerability of unauthenticated traceroute host from remote DSS Server. After bypassing the firewall…
CVE-2022-45430 — CVSS 3.7 (low): Some Dahua software products have a vulnerability of unauthenticated enable or disable SSHD service. After bypassing the firewall access…
CVE-2022-45428 — CVSS 2.7 (low): Some Dahua software products have a vulnerability of sensitive information leakage. After obtaining the permissions of administrators, by…