CVE-2017-6432

CVE-2017-6432 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

An issue was discovered on Dahua DHI-HCVR7216A-S3 3.210.0001.10 build 2016-06-06 devices. The Dahua DVR Protocol, which operates on TCP Port 37777, is an unencrypted, binary protocol. Performing a Man-in-the-Middle attack allows both sniffing and injections of packets, which allows creation of fully privileged new users, in addition to capture of sensitive information.

Learn more about our User Device Pen Test.