Buffer Overflow Vulnerability in Dahua Products: Device Crash via DDNS Test Command

Buffer Overflow Vulnerability in Dahua Products: Device Crash via DDNS Test Command

CVE-2020-9499 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Some Dahua products have buffer overflow vulnerabilities. After the successful login of the legal account, the attacker sends a specific DDNS test command, which may cause the device to go down.

Learn more about our Web Application Penetration Testing UK.