7.8
CWE
287
Advisory Published
CVE Published
Updated

CVE-2013-3613

First published: Tue Sep 17 2013(Updated: )

Dahua DVR appliances do not properly restrict UPnP requests, which makes it easier for remote attackers to obtain access via vectors involving a replay attack against the TELNET port.

Credit: cret@cert.org

Affected SoftwareAffected VersionHow to fix
Dahuasecurity Dvr0404hd-a
Dahuasecurity Dvr0404hd-l
Dahuasecurity Dvr0404hd-s
Dahuasecurity Dvr0404hd-u
Dahuasecurity Dvr0404hf-a-e
Dahuasecurity Dvr0404hf-al-e
Dahuasecurity Dvr0404hf-s-e
Dahuasecurity Dvr0404hf-u-e
Dahuasecurity Dvr0804
Dahuasecurity Dvr0804hd-l
Dahuasecurity Dvr0804hd-s
Dahuasecurity Dvr0804hf-a-e
Dahuasecurity Dvr0804hf-al-e
Dahuasecurity Dvr0804hf-l-e
Dahuasecurity Dvr0804hf-s-e
Dahuasecurity Dvr0804hf-u-e
Dahuasecurity Dvr1604hd-l
Dahuasecurity Dvr1604hd-s
Dahuasecurity Dvr1604hf-a-e
Dahuasecurity Dvr1604hf-al-e
Dahuasecurity Dvr1604hf-l-e
Dahuasecurity Dvr1604hf-s-e
Dahuasecurity Dvr1604hf-u-e
Dahuasecurity Dvr2104c
Dahuasecurity Dvr2104h
Dahuasecurity Dvr2104hc
Dahuasecurity Dvr2104he
Dahuasecurity Dvr2108c
Dahuasecurity Dvr2108h
Dahuasecurity Dvr2108hc
Dahuasecurity Dvr2108he
Dahuasecurity Dvr2116c
Dahuasecurity Dvr2116h
Dahuasecurity Dvr2116hc
Dahuasecurity Dvr2116he
Dahuasecurity Dvr2404hf-s
Dahuasecurity Dvr2404lf-al
Dahuasecurity Dvr2404lf-s
Dahuasecurity Dvr3204hf-s
Dahuasecurity Dvr3204lf-al
Dahuasecurity Dvr3204lf-s
Dahuasecurity Dvr3224l
Dahuasecurity Dvr3232l
Dahuasecurity Dvr5104c
Dahuasecurity Dvr5104h
Dahuasecurity Dvr5104he
Dahuasecurity Dvr5108c
Dahuasecurity Dvr5108h
Dahuasecurity Dvr5108he
Dahuasecurity Dvr5116c
Dahuasecurity Dvr5116h
Dahuasecurity Dvr5116he
Dahuasecurity Dvr5204a
Dahuasecurity Dvr5204l
Dahuasecurity Dvr5208a
Dahuasecurity Dvr5208l
Dahuasecurity Dvr5216a
Dahuasecurity Dvr5216l
Dahuasecurity Dvr5404
Dahuasecurity Dvr5408
Dahuasecurity Dvr5416
Dahuasecurity Dvr5804
Dahuasecurity Dvr5808
Dahuasecurity Dvr5816
Dahuasecurity Dvr6404lf-s

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203