Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistDahuaCVELIST:CVE-2022-45427
HistoryDec 27, 2022 - 12:00 a.m.

CVE-2022-45427

2022-12-2700:00:00
dahua
www.cve.org
dahua software
vulnerability
file upload
arbitrary files
admin permissions

0.001 Low

EPSS

Percentile

39.8%

JSON

Some Dahua software products have a vulnerability of unrestricted upload of file. After obtaining the permissions of administrators, by sending a specific crafted packet to the vulnerable interface, an attacker can upload arbitrary files.

CNA Affected

[
  {
    "vendor": "n/a",
    "product": "DSS Professional, DSS Express, DHI-DSS7016D-S2/DHI-DSS7016DR-S2, DHI-DSS4004-S2",
    "versions": [
      {
        "version": "V8.0.2, V8.0.4, V8.1",
        "status": "affected"
      }
    ]
  }
]

Related

nvd 1
cve 1
prion 1
nvd
nvd
CVE-2022-45427
2022-12-27 18:15:10
cve
cve
CVE-2022-45427
2022-12-27 18:15:10
prion
prion
Unrestricted file upload
2022-12-27 18:15:00

0.001 Low

EPSS

Percentile

39.8%

JSON
Related for CVELIST:CVE-2022-45427
nvd1cve1prion1