CVE-2022-30563
First published: Tue Jun 28 2022(Updated: )
When an attacker uses a man-in-the-middle attack to sniff the request packets with success logging in through ONVIF, he can log in to the device by replaying the user's login packet.
Credit: cybersecurity@dahuatech.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Dahua IPC-HDBW2431E-S-S2 Firmware | <2022-04 | |
| Dahua IPC-HDBW2431E-S-S2 Firmware | ||
| Dahuasecurity IPC-HDBW2831E-S-S2 | <2022-04 | |
| Dahuasecurity IPC-HDBW2831E-S-S2 Firmware | ||
| Dahua IPC-HDBW2230E-S-S2 Firmware | <2022-04 | |
| Dahuasecurity IPC-HDBW2230E-S-S2 Firmware | ||
| Dahua IPC-HDBW2831R-ZS-S2 Firmware | <2022-04 | |
| Dahua IPC-HDBW2831R-ZS-S2 Firmware | ||
| Dahua IPC-HDBW2831R-ZAS-S2 | <2022-04 | |
| Dahuasecurity IPC-HDBW2831R-ZAS-S2 Firmware | ||
| Dahua IPC-HDBW2531R-ZS-S2 Firmware | <2022-04 | |
| Dahuasecurity IPC-HDBW2531R-ZS-S2 Firmware | ||
| Dahua IPC-HDBW2531R-ZAS-S2 Firmware | <2022-04 | |
| Dahua IPC-HDBW2531R-ZAS-S2 Firmware | ||
| Dahua IPC-HDBW2531E-S-S2 | <2022-04 | |
| Dahua IPC-HDBW2531E-S-S2 | ||
| Dahua IPC-HDBW2431R-ZS-S2 | <2022-04 | |
| Dahua IPC-HDBW2431R-ZS-S2 | ||
| Dahua IPC-HDBW2431R-ZAS-S2 | <2022-04 | |
| Dahua IPC-HDBW2431R-ZAS-S2 | ||
| Dahua IPC-HDBW2231F-AS-S2 | <2022-04 | |
| Dahua IPC-HDBW2231F-AS-S2 | ||
| Dahua IPC-HDBW2231E-S-S2 | <2022-04 | |
| Dahua IPC-HDBW2231E-S-S2 | ||
| Dahuasecurity IPC-HDBW2231R-ZS-S2 Firmware | <2022-04 | |
| Dahuasecurity IPC-HDBW2231R-ZS-S2 Firmware | ||
| Dahuasecurity IPC-HDBW2231R-ZAS-S2 Firmware | <2022-04 | |
| Dahuasecurity IPC-HDBW2231R-ZAS-S2 Firmware | ||
| Dahua IPC-HFW2231M-AS-I2-B-S2 | <2022-04 | |
| Dahua IPC-HFW2231M-AS-I2-B-S2 | ||
| Dahua IPC-HFW2231T-AS-S2 | <2022-04 | |
| Dahua IPC-HFW2231T-AS-S2 | ||
| Dahua IPC-HFW2231S-S-S2 | <2022-04 | |
| Dahuasecurity IPC-HFW2231S-S-S2 Firmware | ||
| Dahua IPC-HFW2231T-ZS-S2 | <2022-04 | |
| Dahua IPC-HFW2231T-ZS-S2 | ||
| Dahuasecurity Ipc-hfw2231t-zas-s2 Firmware | <2022-04 | |
| Dahua IPC-HFW2231T-ZAS-S2 | ||
| Dahuasecurity Ipc-hfw2230s-s-s2 Firmware | <2022-04 | |
| Dahua IPC-HFW2230S-S-S2 | ||
| Dahua IPC-HFW2431T-AS-S2 Firmware | <2022-04 | |
| Dahua IPC-HFW2431T-AS-S2 Firmware | ||
| Dahua IPC-HFW2431T-ZS-S2 | <2022-04 | |
| Dahuasecurity Ipc-hfw2431t-zs-s2 Firmware | ||
| Dahua IPC-HFW2431T-ZAS-S2 Firmware | <2022-04 | |
| Dahua IPC-HFW2431T-ZAS-S2 Firmware | ||
| Dahuasecurity IPC-HFW2431S-S-S2 Firmware | <2022-04 | |
| Dahuasecurity IPC-HFW2431S-S-S2 Firmware | ||
| Dahua IPC-HFW2531T-AS-S2 | <2022-04 | |
| Dahua IPC-HFW2531T-AS-S2 | ||
| Dahua IPC-HFW2531T-ZS-S2 Firmware | <2022-04 | |
| Dahua IPC-HFW2531T-ZS-S2 Firmware | ||
| Dahuasecurity IPC-HFW2531T-ZAS-S2 | <2022-04 | |
| Dahua IPC-HFW2531T-ZAS-S2 Firmware | ||
| Dahua IPC-HFW2531S-S-S2 | <2022-04 | |
| Dahuasecurity Ipc-hfw2531s-s-s2 Firmware | ||
| Dahua IPC-HFW2831T-AS-S2 | <2022-04 | |
| Dahua IPC-HFW2831T-AS-S2 | ||
| Dahuasecurity IPC-HFW2831T-ZS-S2 | <2022-04 | |
| Dahuasecurity IPC-HFW2831T-ZS-S2 Firmware | ||
| Dahua IPC-HFW2831T-ZAS-S2 | <2022-04 | |
| Dahua IPC-HFW2831T-ZAS-S2 | ||
| Dahuasecurity Ipc-hfw2831s-s-s2 Firmware | <2022-04 | |
| Dahuasecurity Ipc-hfw2831s-s-s2 Firmware | ||
| Dahuasecurity IPC-HFW2439M-AS-LED-B-S2 | <2022-04 | |
| Dahua IPC-HFW2439M-AS-LED-B-S2 | ||
| Dahua IPC-HFW2239M-AS-LED-B-S2 Firmware | <2022-04 | |
| Dahua IPC-HFW2239M-AS-LED-B-S2 Firmware | ||
| Dahua IPC-HFW2439S-SA-LED-S2 | <2022-04 | |
| Dahua IPC-HFW2439S-SA-LED-S2 | ||
| Dahua IPC-HFW2239S-SA-LED-S2 | <2022-04 | |
| Dahua IPC-HFW2239S-SA-LED-S2 | ||
| Dahuasecurity Asi7213x-t1 Firmware | <2021-09 | |
| Dahuasecurity Asi7213x | ||
| Dahuasecurity ASI7223X-A-T1 | <2021-09 | |
| Dahuasecurity ASI7223X-A-T1 | ||
| Dahuasecurity Asi7223x-a Firmware | <2021-09 | |
| Dahuasecurity Asi7223x-a Firmware | ||
| Dahuasecurity Asi7213x Firmware | <2021-09 | |
| Dahuasecurity Asi7213x Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2022-30563?
CVE-2022-30563 has been classified as a high-severity vulnerability.
How do I fix CVE-2022-30563?
To mitigate CVE-2022-30563, users should update the affected Dahuasecurity firmware to a version released after April 2022.
What devices are affected by CVE-2022-30563?
CVE-2022-30563 affects multiple Dahuasecurity IPC models running firmware versions prior to April 2022.
What type of attack does CVE-2022-30563 enable?
CVE-2022-30563 allows attackers to execute a man-in-the-middle attack to replay user login packets.
Are there any workarounds for CVE-2022-30563 if updates can’t be applied immediately?
As an immediate workaround for CVE-2022-30563, limit network access to the devices to trusted networks only.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/author
- agent/severity
- agent/references
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/dahuasecurity
- canonical/dahua ipc-hdbw2431e-s-s2 firmware
- canonical/dahuasecurity ipc-hdbw2831e-s-s2
- canonical/dahuasecurity ipc-hdbw2831e-s-s2 firmware
- canonical/dahua ipc-hdbw2230e-s-s2 firmware
- canonical/dahuasecurity ipc-hdbw2230e-s-s2 firmware
- canonical/dahua ipc-hdbw2831r-zs-s2 firmware
- canonical/dahua ipc-hdbw2831r-zas-s2
- canonical/dahuasecurity ipc-hdbw2831r-zas-s2 firmware
- canonical/dahua ipc-hdbw2531r-zs-s2 firmware
- canonical/dahuasecurity ipc-hdbw2531r-zs-s2 firmware
- canonical/dahua ipc-hdbw2531r-zas-s2 firmware
- canonical/dahua ipc-hdbw2531e-s-s2
- canonical/dahua ipc-hdbw2431r-zs-s2
- canonical/dahua ipc-hdbw2431r-zas-s2
- canonical/dahua ipc-hdbw2231f-as-s2
- canonical/dahua ipc-hdbw2231e-s-s2
- canonical/dahuasecurity ipc-hdbw2231r-zs-s2 firmware
- canonical/dahuasecurity ipc-hdbw2231r-zas-s2 firmware
- canonical/dahua ipc-hfw2231m-as-i2-b-s2
- canonical/dahua ipc-hfw2231t-as-s2
- canonical/dahua ipc-hfw2231s-s-s2
- canonical/dahuasecurity ipc-hfw2231s-s-s2 firmware
- canonical/dahua ipc-hfw2231t-zs-s2
- canonical/dahuasecurity ipc-hfw2231t-zas-s2 firmware
- canonical/dahua ipc-hfw2231t-zas-s2
- canonical/dahuasecurity ipc-hfw2230s-s-s2 firmware
- canonical/dahua ipc-hfw2230s-s-s2
- canonical/dahua ipc-hfw2431t-as-s2 firmware
- canonical/dahua ipc-hfw2431t-zs-s2
- canonical/dahuasecurity ipc-hfw2431t-zs-s2 firmware
- canonical/dahua ipc-hfw2431t-zas-s2 firmware
- canonical/dahuasecurity ipc-hfw2431s-s-s2 firmware
- canonical/dahua ipc-hfw2531t-as-s2
- canonical/dahua ipc-hfw2531t-zs-s2 firmware
- canonical/dahuasecurity ipc-hfw2531t-zas-s2
- canonical/dahua ipc-hfw2531t-zas-s2 firmware
- canonical/dahua ipc-hfw2531s-s-s2
- canonical/dahuasecurity ipc-hfw2531s-s-s2 firmware
- canonical/dahua ipc-hfw2831t-as-s2
- canonical/dahuasecurity ipc-hfw2831t-zs-s2
- canonical/dahuasecurity ipc-hfw2831t-zs-s2 firmware
- canonical/dahua ipc-hfw2831t-zas-s2
- canonical/dahuasecurity ipc-hfw2831s-s-s2 firmware
- canonical/dahuasecurity ipc-hfw2439m-as-led-b-s2
- canonical/dahua ipc-hfw2439m-as-led-b-s2
- canonical/dahua ipc-hfw2239m-as-led-b-s2 firmware
- canonical/dahua ipc-hfw2439s-sa-led-s2
- canonical/dahua ipc-hfw2239s-sa-led-s2
- canonical/dahuasecurity asi7213x-t1 firmware
- canonical/dahuasecurity asi7213x
- canonical/dahuasecurity asi7223x-a-t1
- canonical/dahuasecurity asi7223x-a firmware
- canonical/dahuasecurity asi7213x firmware