virus logo Intrusion Prevention

Dahua.Products.Loopback.Authentication.Bypass

description-logoDescription

This indicates an attack attempt to exploit an Authentication Bypass Vulnerability in Dahua Products.
The vulnerability is due to a lack of proper validation of user-supplied data. A remote, unauthenticated attacker could exploit this vulnerability by sending a crafted request to the target device. Successful exploitation could gain control of the affected device.

description-logoOutbreak Alert

FortiGuard Labs continues to observe attack attempts exploiting the vulnerabilities highlighted in the recent CISA advisory about Russian military cyber actors. These actors are targeting U.S. and global critical infrastructure to conduct espionage, steal data, and compromise or destroy sensitive information.

View the full Outbreak Alert Report

affected-products-logoAffected Products

Dahua IPC/VTH/VTO/NVR/DVR Series

Impact logoImpact

Security Bypass: Remote attackers can bypass security features of vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
https://www.dahuasecurity.com/aboutUs/trustedCenter/details/582

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Status Detail
2024-11-06 29.898
Modified
 Sig Added
2024-09-12 28.863
Modified
 Default_action:pass:drop
2024-08-27 28.853
New
ID 56500
Created Aug 26, 2024
Updated Nov 06, 2024
CVE ID
Tags Russian Cyber Espionage
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
Known Exploited Yes
Exploit Prediction Score 94.17%
Default Action drop
Active
Affected OS Other
Affected App Other
Profile Type Improper Authentication