AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |
Back to Blog
Dahua ip config4/6/2023 The script was shared on Github and IPVM ( see here) for a short period of time over the weekend. Moreover, the researcher expresses skepticism of the error claim, examined further below.ĭHS issued an advisory on this backdoor in May 2017.Ī proof of concept script has been developed by the researcher. While only Dahua can know their intentions, such an error in production for so long and so widely would be an extreme engineering failure. Moreover, our testing shows the exploit is simple to execute.ĭahua says this was an error ('coding issue') and was not done intentionally. Dahua's statement does not acknowledge this at all. This backdoor allows remote unauthorized admin access via the web and is therefore extremely severe. When they are, we urge you to immediately upgrade firmware. Current firmware Dahua products are vulnerable to this.įirmware updates are available for the first 11 models listed, more should come later this week. A major cyber security vulnerability across many Dahua products has been discovered by an independent researcher, reported on IPVM, verified by IPVM and confirmed by Dahua.Ī 'number' of Dahua HDCVI and IP cameras and recorders are impacted, says Dahua, so far they are listing 11 models but the total will certainly be much higher as they continue to test / confirm.
0 Comments
Read More
Leave a Reply. |