Dahuasecurity Ipc-hfw5x2x Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Dahuasecurity Ipc-hfw5x2x Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2019-9677 — CVSS 9.8 (critical): The specific fields of CGI interface of some Dahua products are not strictly verified, an attacker can cause a buffer overflow by…
CVE-2019-9679 — CVSS 8.8 (high): Some of Dahua's Debug functions do not have permission separation. Low-privileged users can use the Debug function after logging in…
CVE-2019-9678 — CVSS 7.5 (high): Some Dahua products have the problem of denial of service during the login process. An attacker can cause a device crashed by constructing…
CVE-2019-9680 — CVSS 5.3 (medium): Some Dahua products have information leakage issues. Attackers can obtain the IP address and device model information of the device by…
CVE-2019-9681 — CVSS 5.3 (medium): Online upgrade information in some firmware packages of Dahua products is not encrypted. Attackers can obtain this information by analyzing…