Dahua DVR Authentication Bypass and Sensitive Information Disclosure Vulnerability

Dahua DVR Authentication Bypass and Sensitive Information Disclosure Vulnerability

CVE-2013-6117 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Dahua DVR 2.608.0000.0 and 2.608.GV00.0 allows remote attackers to bypass authentication and obtain sensitive information including user credentials, change user passwords, clear log files, and perform other actions via a request to TCP port 37777.

Learn more about our User Device Pen Test.