CVE-2022-45430

Published: Dic 27, 2022 Last Modified: Apr 11, 2025 EU-VD ID: EUVD-2022-48302 Aliases: GSD-2022-45430
ExploitDB:
Other exploit source:
Google Dorks:
LOW 3,7
Source: [email protected]
Attack Vector: network
Attack Complexity: high
Privileges Required: none
User Interaction: none
Scope: unchanged
Confidentiality: none
Integrity: low
Availability: none

Description

AI Translation Available

Some Dahua software products have a vulnerability of unauthenticated enable or disable SSHD service. After bypassing the firewall access control policy, by sending a specific crafted packet to the vulnerable interface, an attacker could enable or disable the SSHD service.

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score
0,0010
Percentile
0,3th
Updated

EPSS Score Trend (Last 91 Days)

284

Improper Access Control

Incomplete
Abstraction: Pillar Structure: Simple
Common Consequences
Security Scopes Affected:
Other
Potential Impacts:
Varies By Context
Applicable Platforms
Technologies: ICS/OT, Not Technology-Specific, Web Based
View CWE Details
Operating System

Dhi-Dss7016Dr-S2 Firmware by Dahuasecurity

Product Information
Vendor Dahuasecurity
Product Dhi-Dss7016Dr-S2 Firmware
Version 8.0.4
cpe:2.3:o:dahuasecurity:dhi-dss7016dr-s2_firmware:8.0.4:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Dhi-Dss4004-S2 Firmware by Dahuasecurity

Product Information
Vendor Dahuasecurity
Product Dhi-Dss4004-S2 Firmware
Version 8.0.4
cpe:2.3:o:dahuasecurity:dhi-dss4004-s2_firmware:8.0.4:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Dhi-Dss7016D-S2 Firmware by Dahuasecurity

Product Information
Vendor Dahuasecurity
Product Dhi-Dss7016D-S2 Firmware
Version 8.0.2
cpe:2.3:o:dahuasecurity:dhi-dss7016d-s2_firmware:8.0.2:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Dss Express by Dahuasecurity

Product Information
Vendor Dahuasecurity
Product Dss Express
Version 8.0.4
cpe:2.3:a:dahuasecurity:dss_express:8.0.4:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Dss Express by Dahuasecurity

Product Information
Vendor Dahuasecurity
Product Dss Express
Version 7.002.1760000.2
cpe:2.3:a:dahuasecurity:dss_express:7.002.1760000.2:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Dhi-Dss4004-S2 Firmware by Dahuasecurity

Product Information
Vendor Dahuasecurity
Product Dhi-Dss4004-S2 Firmware
Version 8.0.2
cpe:2.3:o:dahuasecurity:dhi-dss4004-s2_firmware:8.0.2:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Dss Professional by Dahuasecurity

Product Information
Vendor Dahuasecurity
Product Dss Professional
Version 8.1
cpe:2.3:a:dahuasecurity:dss_professional:8.1:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Dss Express by Dahuasecurity

Product Information
Vendor Dahuasecurity
Product Dss Express
Version 8.0.2
cpe:2.3:a:dahuasecurity:dss_express:8.0.2:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Dss Professional by Dahuasecurity

Product Information
Vendor Dahuasecurity
Product Dss Professional
Version 8.1.1
cpe:2.3:a:dahuasecurity:dss_professional:8.1.1:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Dhi-Dss7016Dr-S2 Firmware by Dahuasecurity

Product Information
Vendor Dahuasecurity
Product Dhi-Dss7016Dr-S2 Firmware
Version 8.1
cpe:2.3:o:dahuasecurity:dhi-dss7016dr-s2_firmware:8.1:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Dhi-Dss7016D-S2 Firmware by Dahuasecurity

Product Information
Vendor Dahuasecurity
Product Dhi-Dss7016D-S2 Firmware
Version 8.0.4
cpe:2.3:o:dahuasecurity:dhi-dss7016d-s2_firmware:8.0.4:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Dhi-Dss4004-S2 Firmware by Dahuasecurity

Product Information
Vendor Dahuasecurity
Product Dhi-Dss4004-S2 Firmware
Version 8.1
cpe:2.3:o:dahuasecurity:dhi-dss4004-s2_firmware:8.1:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Dss Professional by Dahuasecurity

Product Information
Vendor Dahuasecurity
Product Dss Professional
Version 8.0.2
cpe:2.3:a:dahuasecurity:dss_professional:8.0.2:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Dss Express by Dahuasecurity

Product Information
Vendor Dahuasecurity
Product Dss Express
Version 8.1.1
cpe:2.3:a:dahuasecurity:dss_express:8.1.1:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Dss Professional by Dahuasecurity

Product Information
Vendor Dahuasecurity
Product Dss Professional
Version 7.002.1760000.2
cpe:2.3:a:dahuasecurity:dss_professional:7.002.1760000.2:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Dhi-Dss4004-S2 Firmware by Dahuasecurity

Product Information
Vendor Dahuasecurity
Product Dhi-Dss4004-S2 Firmware
Version 1.001.0000001.2
cpe:2.3:o:dahuasecurity:dhi-dss4004-s2_firmware:1.001.0000001.2:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Dhi-Dss7016Dr-S2 Firmware by Dahuasecurity

Product Information
Vendor Dahuasecurity
Product Dhi-Dss7016Dr-S2 Firmware
Version 8.0.2
cpe:2.3:o:dahuasecurity:dhi-dss7016dr-s2_firmware:8.0.2:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Dhi-Dss7016D-S2 Firmware by Dahuasecurity

Product Information
Vendor Dahuasecurity
Product Dhi-Dss7016D-S2 Firmware
Version 1.001.0000001.2
cpe:2.3:o:dahuasecurity:dhi-dss7016d-s2_firmware:1.001.0000001.2:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Dhi-Dss7016D-S2 Firmware by Dahuasecurity

Product Information
Vendor Dahuasecurity
Product Dhi-Dss7016D-S2 Firmware
Version 8.1
cpe:2.3:o:dahuasecurity:dhi-dss7016d-s2_firmware:8.1:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Dhi-Dss7016Dr-S2 Firmware by Dahuasecurity

Product Information
Vendor Dahuasecurity
Product Dhi-Dss7016Dr-S2 Firmware
Version 1.001.0000001.2
cpe:2.3:o:dahuasecurity:dhi-dss7016dr-s2_firmware:1.001.0000001.2:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Dss Professional by Dahuasecurity

Product Information
Vendor Dahuasecurity
Product Dss Professional
Version 8.0.4
cpe:2.3:a:dahuasecurity:dss_professional:8.0.4:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Dss Express by Dahuasecurity

Product Information
Vendor Dahuasecurity
Product Dss Express
Version 8.1
cpe:2.3:a:dahuasecurity:dss_express:8.1:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
https://www.dahuasecurity.com/support/cybersecurity/details…
Patch Vendor Advisory
https://www.dahuasecurity.com/support/cybersecurity/details/1137
https://www.dahuasecurity.com/support/cybersecurity/details…
Patch Vendor Advisory
https://www.dahuasecurity.com/support/cybersecurity/details/1137