Unknown
CVE-2013-5754
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
Add References:
Unknown
(0 users assessed)
Unknown
(0 users assessed)Unknown
Unknown
Unknown
MITRE ATT&CK
Collection
Command and Control
Credential Access
Defense Evasion
Discovery
Execution
Exfiltration
Impact
Initial Access
Lateral Movement
Persistence
Privilege Escalation
Topic Tags
Description
The authorization implementation on Dahua DVR appliances accepts a hash string representing the current date for the role of a master password, which makes it easier for remote attackers to obtain administrative access and change the administrator password via requests involving (1) ActiveX, (2) a standalone client, or (3) unspecified other vectors, a different vulnerability than CVE-2013-3612.
Add Assessment
No one has assessed this topic. Be the first to add your voice to the community.
CVSS V3 Severity and Metrics
General Information
Vendors
Products
- dvr0404hd-a -,
- dvr0404hd-l -,
- dvr0404hd-s -,
- dvr0404hd-u -,
- dvr0404hf-a-e -,
- dvr0404hf-al-e -,
- dvr0404hf-s-e -,
- dvr0404hf-u-e -,
- dvr0804 -,
- dvr0804hd-l -,
- dvr0804hd-s -,
- dvr0804hf-a-e -,
- dvr0804hf-al-e -,
- dvr0804hf-l-e -,
- dvr0804hf-s-e -,
- dvr0804hf-u-e -,
- dvr1604hd-l -,
- dvr1604hd-s -,
- dvr1604hf-a-e -,
- dvr1604hf-al-e -,
- dvr1604hf-l-e -,
- dvr1604hf-s-e -,
- dvr1604hf-u-e -,
- dvr2104c -,
- dvr2104h -,
- dvr2104hc -,
- dvr2104he -,
- dvr2108c -,
- dvr2108h -,
- dvr2108hc -,
- dvr2108he -,
- dvr2116c -,
- dvr2116h -,
- dvr2116hc -,
- dvr2116he -,
- dvr2404hf-s -,
- dvr2404lf-al -,
- dvr2404lf-s -,
- dvr3204hf-s -,
- dvr3204lf-al -,
- dvr3204lf-s -,
- dvr3224l -,
- dvr3232l -,
- dvr5104c -,
- dvr5104h -,
- dvr5104he -,
- dvr5108c -,
- dvr5108h -,
- dvr5108he -,
- dvr5116c -,
- dvr5116h -,
- dvr5116he -,
- dvr5204a -,
- dvr5204l -,
- dvr5208a -,
- dvr5208l -,
- dvr5216a -,
- dvr5216l -,
- dvr5404 -,
- dvr5408 -,
- dvr5416 -,
- dvr5804 -,
- dvr5808 -,
- dvr5816 -,
- dvr6404lf-s -
References
Additional Info
Technical Analysis
Report as Emergent Threat Response
Report as Zero-day Exploit
Report as Exploited in the Wild
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
