Back to search
CVE-2021-33046
Published: Jan 13, 2022
Modified: Aug 3, 2024
PUBLISHED
Description
Some Dahua products have access control vulnerability in the password reset process. Attackers can exploit this vulnerability through specific deployments to reset device passwords.
| Vendor | Product | Versions |
|---|---|---|
n/a | Access control vulnerability found in some Dahua products | affected Dahua IP Camera devices IPC-HX3XXX, and IPC-HX5XXXaffected PTZ Dome Camera SD1A1, SD22, SD49, SD50, SD52C, and SD6ALaffected Thermal TPC-BF1241,TPC-BF2221, TPC-SD2221affected VTO2101E, VTOX221E, and ASC2204C devices Buildtime between 2017/7 ~ 2021/7. NVR devices NVR4XXX, and NVR5XXXaffected XVR devices XVR4XXX, and XVR5XXX+1 more versions |
References
https://www.dahuasecurity.com/support/cybersecurity/details/957
x_refsource_MISC
https://www.dahuasecurity.com/support/cybersecurity/details/987
x_refsource_CONFIRM
https://support.dahuatech.com/networkSecurity/securityDetails?id=95
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now