GCVE - cpe:2.3:h:dahuasecurity:ipc-hdbw2231e-s-s2:-:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:h:dahuasecurity:ipc-hdbw2231e-s-s2:-:*:*:*:*:*:*:*

part: h version: - update: *

Vendor	Dahuasecurity (`49e0e28a-d51a-562c-8056-164d442a6fc2`)
Product	Ipc Hdbw2231E S S2 (`8045de47-e998-5cae-8623-0c2e9a13ada8`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2022-30563`	not_vulnerable	2026-06-03 14:47:09.028955	Details available When an attacker uses a man-in-the-middle attack to sniff the request packets with success logging in through ONVIF, he can log in to the device by replaying the user's login packet. Published: 2022-06-28T13:44:56.000Z Updated: 2024-08-03T06:48:36.397Z Open on db.gcve.eu Reference links https://www.dahuasecurity.com/support/cybersecurity/details/1017	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-30562`	not_vulnerable	2026-06-03 14:47:09.011654	Details available If the user enables the https function on the device, an attacker can modify the user’s request data packet through a man-in-the-middle attack ,Injection of a malicious URL in the Host: header of the HTTP Request results in a 302 redirect to an attacker-controlled page. Published: 2022-06-28T13:43:54.000Z Updated: 2024-08-03T06:48:36.390Z Open on db.gcve.eu Reference links https://www.dahuasecurity.com/support/cybersecurity/details/1017	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-30561`	not_vulnerable	2026-06-03 14:47:09.009125	Details available When an attacker uses a man-in-the-middle attack to sniff the request packets with success logging in, the attacker could log in to the device by replaying the user's login packet. Published: 2022-06-28T13:42:37.000Z Updated: 2024-08-03T06:48:36.529Z Open on db.gcve.eu Reference links https://www.dahuasecurity.com/support/cybersecurity/details/1017	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-30560`	not_vulnerable	2026-06-03 14:47:08.965285	Details available When an attacker obtaining the administrative account and password, or through a man-in-the-middle attack, the attacker could send a specified crafted packet to the vulnerable interface then lead the device to crash. Published: 2022-06-28T13:41:11.000Z Updated: 2024-08-03T06:48:36.391Z Open on db.gcve.eu Reference links https://www.dahuasecurity.com/support/cybersecurity/details/1017	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.