Dahua Products Vulnerable to Password Reset Exploit

Dahua Products Vulnerable to Password Reset Exploit

CVE-2021-33046 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Some Dahua products have access control vulnerability in the password reset process. Attackers can exploit this vulnerability through specific deployments to reset device passwords.

Learn more about our Web Application Penetration Testing UK.