Unauthenticated SSHD Service Manipulation Vulnerability in Dahua Software Products

Unauthenticated SSHD Service Manipulation Vulnerability in Dahua Software Products

CVE-2022-45430 · LOW Severity

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

Some Dahua software products have a vulnerability of unauthenticated enable or disable SSHD service. After bypassing the firewall access control policy, by sending a specific crafted packet to the vulnerable interface, an attacker could enable or disable the SSHD service.

Learn more about our Web Application Penetration Testing UK.