Dahua New Critical Vulnerabilities 2021

By Ethan Ace and Gurami Jamaspishvili, Published Sep 07, 2021, 11:51am EDT

Dahua has admitted two new major vulnerabilities, discovered by cybersecurity researcher Bashis, the latest in numerous cybersecurity vulnerabilities for the NDAA-banned manufacturer over the past 4 years. Watch the video overview:

Risk "**** ****"

******, *** ************* ********** who ********** ***** *** vulnerabilities ****** **** **** "very **** ********* *** another **** ****, *** to **** ****** – i.e. ** ***** *********** are ****** ** ** Admin ** *** ******."

********* ** *****: "********* can ****** ****** ******** authentication ** ************ ********* data *******."

******* ** *** ****, Bashis ** ******** ******* of *** **** ********** until **** *****:

*** ** *** **** high ********* ** ******* "Dahua **** ****", * will **** **** ********** details ***** ******* *, 2021.

CVEs *** ******

***** ***** *** ******** two *** ******* *** these *************** (***-****-***********-****-*****), **** *** *** posted ***, ** *** screenshot ***** *****:

IPVM Image

Two *************** - ********* **** ******

***** ******** *** ******** vulnerabilities ** ************* ********, ********* ********* ****** of ********.

  • ***-****-*****: ******** **** ***** time ****** **** ****
  • ***-****-*****: ** ****** ******** with ***** **** ****** May **** *** ********/******** firmware ***** ** ******** 2019.

*******, ** ******** ********* details ** ***** *************** have **** ********. ** will ****** **** ****** and **** ******' ***** of ******* **** ** is ******** ** *******.

Models ********

***** ********* * **** ** impacted ********** **** ***.

  • *** ***** **** (***-****-*****) covers **** ** ***** fixed, ***, *** ******* cameras, ** **** ** intercoms.
  • *** ****** **** (***-****-*****) covers *** **** **** of ** ****** ****** and *********, *** **** includes **** ** *****'* NVRs *** ****.

****: ***** ******** ***** should ******* **** ***** *** NA **** ********* ******, ** **** ****** from *****'* ************* **** numbers.

******* ******** ** ******* these *************** *** ** found *******'* ************ ***** **** ** the **.

**** **** ***** **** Dahua ******* ******* ** "online *******" ***** ****** for *** ********, ** have ***** **** **** feature ***** *****, *.*., an *** ******* **** firmware ***** "****** *******" when ***** *** ****** upgrade, ******* **** ******** being *********.

IPVM Image

Dispute ***** ******** ******

***** ***** (***-****-*****; ***-****-*****) assigned ***** *************** *.* and *.* ******, ****** assigned **** * *.* (Critical). ***** ******* ** respond ** **** ** this.

*** ********** ******* ******' and *****'* ******* ** due ** "*****", ***** describes ******* ** ********* vulnerability *** ****** ********* other **** ******. *** Bashis, ***** **** ******* grants **** ***** ************, it ***** ** **** to ****** ***** *******.

** *** ********* *****, we *********** *** ******** in ***** **** *.* to *.* **** ******** Scope:

********, ***** ***** ********* the ************* ** * "tiny ***" ***** ****** raised ******** **** **** deceptive **************:

IPVM Image

Dahua **********

***** *** ******* ********** with ** ***** ******* nor ****** ** *** home ****. ** ************ is ****** ****** *** site. ***** **** ** sent ** ***** ** dealers, ***** ** ****** with ** *********** **** this ** * ********* for '*** *** ********* device *************':

IPVM Image

Dahua **** "*** ********* *** *********** *****"

***** ******* ** ******* on *** *******, ******* IPVM **** **** "*** necessary *** *********** *****":

***** ***** **** ***** of **** ********* *************, Dahua *** ***** *** necessary *** *********** ***** to ******* *** *****. Below ** *** ******** advisory **** ** ******** to *** ***** ******* dealers ** ****** ****.

Ignored ****** ******* *******

**** ** ****, ***** ignored *** ***********' ****** on ***** ***************:

IPVM Image

***:

IPVM Image

**** ** ******** ***** 5 ****, **** ******** Bashis ** ******* ********* a ******** **** *****:

IPVM Image

Many ********** *************** *** *****

**** ***** ******** ************* add ** *****’* ******* bad ************* ***** ******.

* **** ***,* ***** ******** ***** vulnerability******** **** “********* *** perform *** ****** **** the ******** **** ** authorized ** **” ** devices ********* ** *****’* cloud *******, ********* ***** and ** ** *** OEM ********, ********* ********* and *******.

** ********* ****,* ***** ******** *************** were ********, **** *** ** them ******* ********* ** gain **** ******* ** the *******.

**** * ***** ****** that, *********** ********* ****** *********** ********************* ************ ****** ** the ***** ****** ** dozens ** *******.

*** ** ****,* ******** *** ********* to ***** *******, ********* ** **** hacks ** ***** ********.

***, ***** ** ****, Dahua ***** **** * similar ******.

***** ********* ********* ************* concerns, *********** ***“************* ********,”*** **** ***** ******* security ********“*** * ***** ***”*** **** ***** “*** 7-step *******...******** [*****] ** multiple ******.”

*****'* ******* ***** *************** show *** **** **** the ****** *****.

Comments (43)

** ******** ** ***** two ***** *** ******* us **** ***** * "bug" ** *****'* *********, that ** ** **** day *** *** **** exploited (***), **** * note ** ****** ********* on *** ***** ******* to *** ****** ********.

******** ** *** **** a *** ** ********* disappeared **** *****'* *** site ******** *******, *** they **** ******** **** back **** ******* ********. I ***** **** *** the ******.

Agree: 1
Disagree
Informative: 3
Unhelpful
Funny

*******, ***** **** ** well, ***** ********** **** I **** ****. (***** missing ******* *** **** of ** *******)

Agree
Disagree
Informative: 1
Unhelpful
Funny

* ****** ** **** is **********'* ******* ** *** vulnerability ************ *****... ** ** there's **** ** *** way...

Agree: 1
Disagree
Informative
Unhelpful
Funny

****, ***** ** ****** something ** *** *** when ** ***** ** Dahua...

Agree: 1
Disagree
Informative
Unhelpful
Funny: 5

****** ********?

IPVM Image

Agree
Disagree
Informative
Unhelpful
Funny: 1

*** **** ** ******? ,)

Agree
Disagree
Informative
Unhelpful
Funny: 1

* ***'* *** *** problem ** ** ** just * **** ***...

IPVM Image

Agree: 1
Disagree
Informative
Unhelpful
Funny

*** ******** ************** ****** vulnerability ***** ** **** Dahua ******** ****** *** login *******…

***** ***** ** **** some ** ***** *********** backdoor ********** *** *** them ** *** ********* team :)

Agree
Disagree
Informative
Unhelpful
Funny: 4

*****, *** **** *** the **** **** **** ,)

Agree: 2
Disagree
Informative
Unhelpful
Funny: 2

*** ***** ******* *** its ***** ******** ********,***** ***** ******** ********, *** *** ****** fever ******* ***** **** is *** ****** **** Dahua **** *** ******, the ******* ***** ******* intentions ** ******* *** problems. *** *** ****** inside ** ***** **** know **** *** ** long ** *** ***** keeps *******, **** **** make *******. ****** ** mind.

Agree: 3
Disagree
Informative
Unhelpful
Funny

*** ***** ****, ** actual ******* **** *****?

Agree
Disagree
Informative
Unhelpful
Funny

**** *** *** ****. Anyone *** ****** ***** functions **** *** ******** into *** ******** ***** is ******* *** ***** clear ********** ** *******. The ********* *** ********* into *** ******** **** the ***** *** ************ they ***'* ** *****. Speak ** ***** *** stop ********** ******** **** oems ****** ***** ******** once *** *** ** longer ******** ** *** practice.

Agree
Disagree
Informative
Unhelpful
Funny

**** *** *** ****.

******* ****’** ******** ****** good *********** *** *** intentionally ******* ********* **** to **** **** ****** sloppy ****** *** *****?

* ***’* ***** **.

@****** -

*) **** ** *** think - ****** ** sneaky.

***

*) ***’* *** ***** that ******* ***** ***** a ********* ************ ******** if **** ****** ** - ******** *** ****** code ** ******?

Agree
Disagree
Informative
Unhelpful
Funny

********* ************ ********

**** * ***** **** maybe?

* ********: *) *** a ******** ******, * would ** ***** ******** to **** ******** ***** on ****** **** *******, even ** **'* ********* undetectable. ******** ********* ***** still ****** *** ***** your *********. *) ** somebody **** ******, **** will ***** ** **** to *** ****** ******. The **** **** ***** days *** ****** ***** and "**** *** *** land" ** ***** ** blend **. ** **** cooler, *** ******** ****'* stolen *****.

** ******** ******* ** sloppy ******* ******'* *****. There *** * *** of ****, ******, *********** developers ** *** *****, trying ** **** ***** code ****** *** ********.

** * ****** *********, bashis *** * ****** of ***** **** ********** immediately ** ****** ** suspected.

Agree: 1
Disagree
Informative
Unhelpful
Funny

*** **** ********* *** cloud ******** ** ******** 1 *** *

Agree: 1
Disagree
Informative
Unhelpful
Funny

******, ******, ** * would **** ******** ** genuine *********, * ***** defiantly ******* **** ******** as **, ******* *** prior ****** *************. *** FYI, **** ******* ** all *******, *** **** Dahua. (********** ****** ** Hik)

Agree
Disagree
Informative
Unhelpful
Funny

*) ****

*) *******, **** *** and **, ******* **'* better ** ***** **** as ** ****

Agree
Disagree
Informative
Unhelpful
Funny

** ****** ****** ******* cameras ********* ** *** public ********? ** *****’* world *** *****’* ****** through ***? ***** *** put * ******* ******** wide **** ** *** internet **** **** *** built ** ******** **?

Agree
Disagree: 2
Informative
Unhelpful
Funny

** *************** *** *** an *****? **** ***** connecting **** ** *****'* cloud? ***** *** ***** Dahua's *****?

Agree
Disagree
Informative
Unhelpful
Funny

**.

Agree: 1
Disagree
Informative
Unhelpful
Funny

** * ******’*. ** these ******* *** *** connected ** *** *** what ** *** ***** that *** ******? ***** the *** ***** ***** vulnerabilities ** **** *** launch ******* ******* ****** of *****.

Agree
Disagree
Informative
Unhelpful
Funny

** *** **** * years, **** **** **** of *** ***** ************ systems **** ** ***** connected, *****/********? * ********** that ****** *** ******* with *** ****** / walled *** ******** *** it's ************ *********** ** a ***** ***** ***** and ************* ****** ** be **** ** ****** their ******* ******** **?

Agree: 3
Disagree
Informative
Unhelpful
Funny

* **** ******* **** seen ****** ** **** access/backdoor...

Agree
Disagree
Informative
Unhelpful
Funny

** ****** **** **

Agree
Disagree
Informative
Unhelpful
Funny

*** ** *** ***** P2P ***** ****? **'* all ***** ********, *** nowadays **'* *** ***** P2P ***** (*** ****), not **** *** ***** back **** ****. ****'* the "*******"...

Agree
Disagree
Informative
Unhelpful
Funny

"******* ****** *** ***** under-examined"

**** **** ******* (** gunpoint) *** ******** *****.

Agree
Disagree
Informative
Unhelpful
Funny

***** *** ********* ***** affected, ****** *********** ******* it ** **** '*******' alerts ****** **** ** being **** *****'* *** parent *****:

IPVM Image

Agree: 2
Disagree
Informative: 1
Unhelpful
Funny

** ****** ***** *** vendors *** **** ********, I ***** ** ********* surprised ** *** ** them ******'* ** **.

Agree: 1
Disagree
Informative
Unhelpful
Funny

***** ******* *** ** us **** *** ********* feedback ** *** ******** upgrade *****, ****** **** it's *** ***** *** having *** ********:

**** **** ******** *******, the ********** ************ ** this ******* ******* *******, in ****, ** ********* having ********* ******** ******** that ** **** ********. We ** *** **** if **** *** **** consistently ******** **** ***** firmware ********, *** ******** it *** ***, ***** would ******* **** *******. Thus *** ** ****** Dahua ******** *** ******* out ** ** **** any ******** ***** **** current *******. *** ******** that **** ********** **** issues ** ********** ** reach *** ** ** so ** *** ******* technical *******.

*** *******, **** ** what ** ********:

** **** ***** **** this ******* ***** *****, e.g., ** *** ******* 2018 ******** ***** "****** version" **** ***** *** online *******, ******* **** firmware ***** *********.

IPVM Image

*'** ***** ***** ** clarify *** ***** ******** checking ******* ****** **** that *** **** ******** is *** ** ****.

Agree
Disagree
Informative
Unhelpful
Funny

** ********** ****** *****'* Firmware, *** ***** ******* to ****** ******* ****** update (**'* *** ****** version' ***** ****), ***** we ****** *** * newer ******* ********* *** manual ******.

Agree
Disagree
Informative
Unhelpful
Funny

*** ************ **** ******** that ******** ******* ** done ************ ** ******. If *** *** ****** a **** *** ****** be **** ** ******** the ****** ******* *** be ****. ****** ** know **'* ********** *** then ***** **** *** intermediate ******** *** ******* crossed **** **** ** works ** ***********. **** like ************* *** **** the ******* *** ** their ***** ******. **** to **** ** ** a **** ************ *** can ******* ***** ********.

* ******** ******* **** should ** **** ** in **** **** *** if ** ****** ** needed, ******** *** ****** and ******* *** ******, reporting *** ******. ** not, ** ** *** a ************ ******* ** manage ************ *********.

Agree
Disagree
Informative: 1
Unhelpful
Funny
Agree
Disagree
Informative
Unhelpful
Funny

*** **** **** ** applied ** ******* ********* to *** *** ******* Dahua's *** ***** ******* (without ***** **** **********)?

Agree
Disagree
Informative
Unhelpful
Funny

** ******, *** - but *********** * ***** say ****** ********.

***** *** ***** ** basically * *** ****** (simplified ***********), ***** * protocol ****** ***** (**** called ***/*****) ** **** for **** ******* ******* the *** *** *** device, *** ***** *************** cannot ** **** **** the ***** ********.

*******, ** *** *** use ****/***** ** **** protocol ****** **** *** tunnel, **** ***, ***** vulnerabilities *** ** ****.

* *** *** ***** to *** ******* ******** than ***** ** *** UDP ******, *** ********** in *** ****** ** always ****** ** ******* to ***** **** ***/***** on ***.*.*.*, *** **** port *** ** ********** to ****/***** ** ****.

**** **** **** ******* why * ****** *** solid ** ** **** question.

Agree
Disagree
Informative: 1
Unhelpful
Funny

** **** ****, ***** could ******** ********* ***** P2P ******* ** * free "********" ******* ******* possible ***** ** ***** vulnerabilities 😉

Agree: 1
Disagree
Informative
Unhelpful
Funny

****, ***** ***** *** uses *****, **** **** actually ******** ** (******) 3DES ************* ** ***** it *** ******** ** decode (*** ******** ***) 3DES *********** ** ***** text. ******** ***** **, if *** ******** '************* mode'.

**** ***********, ** *******

Agree
Disagree
Informative
Unhelpful
Funny

* **** ***** **** I ** *** ******* to *** ***** ***** pushing *** *** ********...

*********

Agree
Disagree
Informative: 1
Unhelpful
Funny

*** ***** ** **** models? **** ** **** new ******** ***?

Agree
Disagree
Informative
Unhelpful
Funny

**** ******

Agree
Disagree
Informative
Unhelpful
Funny

** *** **** ********* to ****, *** *** Dahua ***** ******** ** be **** **** ****** are ** *** *** impacted?

Agree
Disagree
Informative
Unhelpful
Funny

**** ********, * **** still *** ***** *** devices **** *** ** new *** ******* ********, so...

Agree
Disagree
Informative
Unhelpful
Funny

>> ****** ******** ***** <<

**** ** * ******* issue, *** ***** **** to **** ***** ******* are ********.

Agree: 1
Disagree
Informative
Unhelpful
Funny

* ******** ******* **** out ** ***** ***** that * ***** *** find ******* ******** *** some ** ** ******* in ***** *********, ***** they ***** **** ******* I **** ** **** could **** *** **** for **, ***** * refused ** ****** ***** and ***** **** * expect ** ** **** updated ******** *** ** devices ** ***** ******* website.

**** ******** ***** ****...

Agree
Disagree
Informative: 1
Unhelpful
Funny
Read this IPVM report for free.

This article is part of IPVM's 7,214 reports and 961 tests and is only available to subscribers. To get a one-time preview of our work, enter your work email to access the full article.

Already a subscriber? Login here | Join now
Loading Related Reports