ID
VAR-201705-3743
CVE
CVE-2017-7925
TITLE
plural Dahua Vulnerabilities related to authorization, authority, and access control in products
Trust: 0.8
DESCRIPTION
A Password in Configuration File issue was discovered in Dahua DH-IPC-HDBW23A0RN-ZS, DH-IPC-HDBW13A0SN, DH-IPC-HDW1XXX, DH-IPC-HDW2XXX, DH-IPC-HDW4XXX, DH-IPC-HFW1XXX, DH-IPC-HFW2XXX, DH-IPC-HFW4XXX, DH-SD6CXX, DH-NVR1XXX, DH-HCVR4XXX, DH-HCVR5XXX, DHI-HCVR51A04HE-S3, DHI-HCVR51A08HE-S3, and DHI-HCVR58A32S-S2 devices. The password in configuration file vulnerability was identified, which could lead to a malicious user assuming the identity of a privileged user and gaining access to sensitive information. plural Dahua The product contains vulnerabilities related to authorization, permissions, and access control.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Dahua DH-IPC-HDBW23A0RN-ZS is a camera product of Dahua Company of China. Dahua Technology is prone to an authentication-bypass vulnerability and an information-disclosure vulnerability. Attackers may exploit these issues to gain unauthorized access to restricted content by bypassing intended security restrictions or to obtain sensitive information that may aid in launching further attacks. Dahua DH-IPC-HDBW23A0RN-ZS, etc. There are security vulnerabilities in many Dahua products. The following products are affected: Dahua DH-IPC-HDBW23A0RN-ZS; DH-IPC-HDBW13A0SN; DH-IPC-HDW1XXX; DH-IPC-HDW2XXX; DH-IPC-HDW4XXX; DH-IPC-HFW4XXX; DH-SD6CXX; DH-NVR1XXX; DH-HCVR4XXX; DH-HCVR5XXX; DHI-HCVR51A04HE-S3; DHI-HCVR51A08HE-S3;
Trust: 2.7
IOT TAXONOMY
| category: | ['IoT', 'ICS', 'Network device'] | sub_category: | - | Trust: 0.6 |
| category: | ['ICS'] | sub_category: | - | Trust: 0.2 |
AFFECTED PRODUCTS
| vendor: | dahuasecurity | model: | dh-sd6cxx | scope: | eq | version: | - | Trust: 1.6 |
| vendor: | dahuasecurity | model: | dhi-hcvr58a32s-s2 | scope: | eq | version: | - | Trust: 1.6 |
| vendor: | dahuasecurity | model: | dhi-hcvr51a08he-s3 | scope: | eq | version: | - | Trust: 1.6 |
| vendor: | dahuasecurity | model: | dh-ipc-hdbw23a0rn-zs | scope: | eq | version: | - | Trust: 1.6 |
| vendor: | dahuasecurity | model: | dh-nvr1xxx | scope: | eq | version: | - | Trust: 1.6 |
| vendor: | dahuasecurity | model: | dh-hcvr4xxx | scope: | eq | version: | - | Trust: 1.6 |
| vendor: | dahuasecurity | model: | dh-ipc-hfw4xxx | scope: | eq | version: | - | Trust: 1.6 |
| vendor: | dahuasecurity | model: | dhi-hcvr51a04he-s3 | scope: | eq | version: | - | Trust: 1.6 |
| vendor: | dahuasecurity | model: | dh-ipc-hfw2xxx | scope: | eq | version: | - | Trust: 1.6 |
| vendor: | dahuasecurity | model: | dh-hcvr5xxx | scope: | eq | version: | - | Trust: 1.6 |
| vendor: | dahua | model: | dh-ipc-hdbw23a0rn-zs | scope: | - | version: | - | Trust: 1.4 |
| vendor: | dahua | model: | dh-ipc-hdbw13a0sn | scope: | - | version: | - | Trust: 1.4 |
| vendor: | dahua | model: | dh-ipc-hdw1xxx | scope: | - | version: | - | Trust: 1.4 |
| vendor: | dahua | model: | dh-ipc-hdw2xxx | scope: | - | version: | - | Trust: 1.4 |
| vendor: | dahua | model: | dh-ipc-hdw4xxx | scope: | - | version: | - | Trust: 1.4 |
| vendor: | dahua | model: | dh-ipc-hfw1xxx | scope: | - | version: | - | Trust: 1.4 |
| vendor: | dahua | model: | dh-ipc-hfw2xxx | scope: | - | version: | - | Trust: 1.4 |
| vendor: | dahua | model: | dh-ipc-hfw4xxx | scope: | - | version: | - | Trust: 1.4 |
| vendor: | dahua | model: | dh-sd6cxx | scope: | - | version: | - | Trust: 1.4 |
| vendor: | dahua | model: | dh-nvr1xxx | scope: | - | version: | - | Trust: 1.4 |
| vendor: | dahua | model: | dh-hcvr4xxx | scope: | - | version: | - | Trust: 1.4 |
| vendor: | dahua | model: | dh-hcvr5xxx | scope: | - | version: | - | Trust: 1.4 |
| vendor: | dahua | model: | dhi-hcvr51a04he-s3 | scope: | - | version: | - | Trust: 1.4 |
| vendor: | dahua | model: | dhi-hcvr51a08he-s3 | scope: | - | version: | - | Trust: 1.4 |
| vendor: | dahua | model: | dhi-hcvr58a32s-s2 | scope: | - | version: | - | Trust: 1.4 |
| vendor: | dahuasecurity | model: | dh-ipc-hdbw13a0sn | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | dahuasecurity | model: | dh-ipc-hdw1xxx | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | dahuasecurity | model: | dh-ipc-hdw4xxx | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | dahuasecurity | model: | dh-ipc-hfw1xxx | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | dahuasecurity | model: | dh-ipc-hdw2xxx | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | dahuasecurity | model: | dhi-hcvr58a32s-s2 | scope: | eq | version: | 0 | Trust: 0.3 |
| vendor: | dahuasecurity | model: | dhi-hcvr51a08he-s3 | scope: | eq | version: | 0 | Trust: 0.3 |
| vendor: | dahuasecurity | model: | dhi-hcvr51a04he-s3 | scope: | eq | version: | 0 | Trust: 0.3 |
| vendor: | dahuasecurity | model: | dh-sd6cxx | scope: | eq | version: | 0 | Trust: 0.3 |
| vendor: | dahuasecurity | model: | dh-nvr1xxx | scope: | eq | version: | 0 | Trust: 0.3 |
| vendor: | dahuasecurity | model: | dh-ipc-hfw4xxx | scope: | eq | version: | 0 | Trust: 0.3 |
| vendor: | dahuasecurity | model: | dh-ipc-hfw2xxx | scope: | eq | version: | 0 | Trust: 0.3 |
| vendor: | dahuasecurity | model: | dh-ipc-hfw1xxx | scope: | eq | version: | 0 | Trust: 0.3 |
| vendor: | dahuasecurity | model: | dh-ipc-hdw4xxx | scope: | eq | version: | 0 | Trust: 0.3 |
| vendor: | dahuasecurity | model: | dh-ipc-hdw2xxx | scope: | eq | version: | 0 | Trust: 0.3 |
| vendor: | dahuasecurity | model: | dh-ipc-hdw1xxx | scope: | eq | version: | 0 | Trust: 0.3 |
| vendor: | dahuasecurity | model: | dh-ipc-hdbw23a0rn-zs | scope: | eq | version: | 0 | Trust: 0.3 |
| vendor: | dahuasecurity | model: | dh-ipc-hdbw13a0sn | scope: | eq | version: | 0 | Trust: 0.3 |
| vendor: | dahuasecurity | model: | dh-hcvr5xxx | scope: | eq | version: | 0 | Trust: 0.3 |
| vendor: | dahuasecurity | model: | dh-hcvr4xxx | scope: | eq | version: | 0 | Trust: 0.3 |
| vendor: | dh ipc hdbw23a0rn zs | model: | - | scope: | eq | version: | - | Trust: 0.2 |
| vendor: | dh nvr1xxx | model: | - | scope: | eq | version: | - | Trust: 0.2 |
| vendor: | dh hcvr4xxx | model: | - | scope: | eq | version: | - | Trust: 0.2 |
| vendor: | dh hcvr5xxx | model: | - | scope: | eq | version: | - | Trust: 0.2 |
| vendor: | dhi hcvr51a04he s3 | model: | - | scope: | eq | version: | - | Trust: 0.2 |
| vendor: | dhi hcvr51a08he s3 | model: | - | scope: | eq | version: | - | Trust: 0.2 |
| vendor: | dhi hcvr58a32s s2 | model: | - | scope: | eq | version: | - | Trust: 0.2 |
| vendor: | dh ipc hdbw13a0sn | model: | - | scope: | eq | version: | - | Trust: 0.2 |
| vendor: | dh ipc hdw1xxx | model: | - | scope: | eq | version: | - | Trust: 0.2 |
| vendor: | dh ipc hdw2xxx | model: | - | scope: | eq | version: | - | Trust: 0.2 |
| vendor: | dh ipc hdw4xxx | model: | - | scope: | eq | version: | - | Trust: 0.2 |
| vendor: | dh ipc hfw1xxx | model: | - | scope: | eq | version: | - | Trust: 0.2 |
| vendor: | dh ipc hfw2xxx | model: | - | scope: | eq | version: | - | Trust: 0.2 |
| vendor: | dh ipc hfw4xxx | model: | - | scope: | eq | version: | - | Trust: 0.2 |
| vendor: | dh sd6cxx | model: | - | scope: | eq | version: | - | Trust: 0.2 |
CVSS
SEVERITY | CVSSV2 | CVSSV3 | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
|
PROBLEMTYPE DATA
| problemtype: | CWE-260 | Trust: 1.8 |
| problemtype: | CWE-522 | Trust: 1.1 |
| problemtype: | CWE-264 | Trust: 0.9 |
THREAT TYPE
remote
Trust: 0.6
TYPE
permissions and access control issues
Trust: 0.6
CONFIGURATIONS
PATCH
| title: | Cybersecurity Vulnerability Update - March 8 2017 | url: | http://www.dahuasecurity.com/en/us/single.php?nid=364 | Trust: 0.8 |
| title: | Security Notification DHCC-201703-01 | url: | http://www1.dahuasecurity.com/annoucementsingle/security-notification-dhcc-201703-01-112.html | Trust: 0.8 |
| title: | Cyber Vulnerability Affecting Certain Dahua IP Cameras and Recorders (030617) | url: | http://us.dahuasecurity.com/en/us/Security-Bulletin_030617.php | Trust: 0.8 |
| title: | Cyber Vulnerability Affecting Certain Dahua IP Cameras and Recorders (04032017) | url: | http://us.dahuasecurity.com/en/us/Security-Bulletin_04032017.php | Trust: 0.8 |
| title: | Cybersecurity Statement - March 6th 2017 | url: | http://www.dahuasecurity.com/en/us/single.php?nid=354 | Trust: 0.8 |
| title: | Patches for Dahua's multiple digital video recorders and IP camera profile password vulnerabilities | url: | https://www.cnvd.org.cn/patchInfo/show/94425 | Trust: 0.6 |
| title: | Repair measures for various UOB product security vulnerabilities | url: | http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=99754 | Trust: 0.6 |
EXTERNAL IDS
| db: | NVD | id: | CVE-2017-7925 | Trust: 3.6 |
| db: | ICS CERT | id: | ICSA-17-124-02 | Trust: 2.8 |
| db: | BID | id: | 98312 | Trust: 2.6 |
| db: | CNNVD | id: | CNNVD-201704-1045 | Trust: 0.9 |
| db: | CNVD | id: | CNVD-2017-08192 | Trust: 0.8 |
| db: | JVN | id: | JVNVU98841854 | Trust: 0.8 |
| db: | JVNDB | id: | JVNDB-2017-003971 | Trust: 0.8 |
| db: | IVD | id: | B9A8CA3D-8AC9-429C-880C-4CC25C09C01B | Trust: 0.2 |
| db: | VULHUB | id: | VHN-116128 | Trust: 0.1 |
REFERENCES
| url: | https://ics-cert.us-cert.gov/advisories/icsa-17-124-02 | Trust: 2.8 |
| url: | http://us.dahuasecurity.com/en/us/security-bulletin_030617.php | Trust: 2.3 |
| url: | http://www.securityfocus.com/bid/98312 | Trust: 1.7 |
| url: | https://nvd.nist.gov/vuln/detail/cve-2017-7925 | Trust: 1.4 |
| url: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-7925 | Trust: 0.8 |
| url: | http://jvn.jp/vu/jvnvu98841854/index.html | Trust: 0.8 |
| url: | https://github.com/mcw0/poc/blob/master/dahua-backdoor-poc.py | Trust: 0.8 |
| url: | https://github.com/mcw0/poc/blob/master/dahua-backdoor.txt | Trust: 0.8 |
| url: | www.dahuasecurity.com | Trust: 0.3 |
CREDITS
Bashis
Trust: 0.3
SOURCES
| db: | IVD | id: | b9a8ca3d-8ac9-429c-880c-4cc25c09c01b |
| db: | CNVD | id: | CNVD-2017-08192 |
| db: | VULHUB | id: | VHN-116128 |
| db: | BID | id: | 98312 |
| db: | JVNDB | id: | JVNDB-2017-003971 |
| db: | CNNVD | id: | CNNVD-201704-1045 |
| db: | NVD | id: | CVE-2017-7925 |
LAST UPDATE DATE
2024-11-23T22:56:13.229000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2017-08192 | date: | 2017-06-05T00:00:00 |
| db: | VULHUB | id: | VHN-116128 | date: | 2019-10-09T00:00:00 |
| db: | BID | id: | 98312 | date: | 2017-05-23T16:23:00 |
| db: | JVNDB | id: | JVNDB-2017-003971 | date: | 2017-07-13T00:00:00 |
| db: | CNNVD | id: | CNNVD-201704-1045 | date: | 2019-10-17T00:00:00 |
| db: | NVD | id: | CVE-2017-7925 | date: | 2024-11-21T03:32:58.700 |
SOURCES RELEASE DATE
| db: | IVD | id: | b9a8ca3d-8ac9-429c-880c-4cc25c09c01b | date: | 2017-06-05T00:00:00 |
| db: | CNVD | id: | CNVD-2017-08192 | date: | 2017-06-05T00:00:00 |
| db: | VULHUB | id: | VHN-116128 | date: | 2017-05-06T00:00:00 |
| db: | BID | id: | 98312 | date: | 2017-05-04T00:00:00 |
| db: | JVNDB | id: | JVNDB-2017-003971 | date: | 2017-06-13T00:00:00 |
| db: | CNNVD | id: | CNNVD-201704-1045 | date: | 2017-04-21T00:00:00 |
| db: | NVD | id: | CVE-2017-7925 | date: | 2017-05-06T00:29:00.427 |