Approved changes feed: RSS · Atom
cpe:2.3:a:dahua:sd:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Dahua (12f4c74b-e06d-51bd-8d86-d4166f53fc06) |
|---|---|
| Product | Sd (13a3ba15-a981-58d6-8ae1-b400b64b0937) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2025-31702 |
vulnerable | 2026-06-03 15:00:39.112275 |
Details available
MEDIUM (6.8)
A vulnerability exists in certain Dahua embedded products. Third-party malicious attacker with obtained normal user credentials could exploit the vulnerability to access certain data which are restricted to admin privileges, such as system-sensitive files through specific HTTP request. This may cause tampering with admin password, leading to privilege escalation. Systems with only admin account are not affected.
Published: 2025-10-15T05:53:35.664Z
Updated: 2025-10-15T13:25:09.791Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-31701 |
vulnerable | 2026-06-03 15:00:39.111969 |
Details available
HIGH (8.1)
A vulnerability has been found in Dahua products.
Attackers could exploit a buffer overflow vulnerability by sending specially crafted malicious packets, potentially causing service disruption (e.g., crashes) or remote code execution (RCE). Some devices may have deployed protection mechanisms such as Address Space Layout Randomization (ASLR), which reduces the likelihood of successful RCE exploitation. However, denial-of-service (DoS) attacks remain a concern.
Published: 2025-07-23T06:55:20.001Z
Updated: 2025-07-23T14:14:04.669Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-31700 |
vulnerable | 2026-06-03 15:00:39.111456 |
Details available
HIGH (8.1)
A vulnerability has been found in Dahua products.
Attackers could exploit a buffer overflow vulnerability by sending specially crafted malicious packets, potentially causing service disruption (e.g., crashes) or remote code execution (RCE). Some devices may have deployed protection mechanisms such as Address Space Layout Randomization (ASLR), which reduces the likelihood of successful RCE exploitation. However, denial-of-service (DoS) attacks remain a concern.
Published: 2025-07-23T06:54:37.996Z
Updated: 2025-07-23T14:19:19.313Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.