Authentication bypass in multiple Dahua products
| Risk | Critical |
| Patch available | YES |
| Number of vulnerabilities | 2 |
| CVE-ID | CVE-2021-33044 CVE-2021-33045 |
| CWE-ID | CWE-287 |
| Exploitation vector | Network |
| Public exploit |
Vulnerability #1 is being exploited in the wild. Vulnerability #2 is being exploited in the wild. |
| Vulnerable software |
Dahua IPC-HX1XXX Hardware solutions / Other hardware appliances Dahua IPC-HX2XXX Hardware solutions / Other hardware appliances Dahua IPC-HX3XXX Hardware solutions / Other hardware appliances Dahua IPC-HX5(4)(3)XXX Hardware solutions / Other hardware appliances Dahua IPC-HX5XXX Hardware solutions / Other hardware appliances Dahua IPC-HUM7XXX Hardware solutions / Other hardware appliances Dahua IPC-HX8XXX Hardware solutions / Other hardware appliances Dahua VTO75X95X Hardware solutions / Other hardware appliances Dahua VTO65XXX Hardware solutions / Other hardware appliances Dahua DHI-ASI7213Y-V3-T1 Hardware solutions / Other hardware appliances Dahua VTH542XH Hardware solutions / Other hardware appliances Dahua SD1A1 Hardware solutions / Other hardware appliances Dahua SD22 Hardware solutions / Other hardware appliances Dahua SD49 Hardware solutions / Other hardware appliances Dahua SD50 Hardware solutions / Other hardware appliances Dahua SD52C Hardware solutions / Other hardware appliances Dahua SD6AL Hardware solutions / Other hardware appliances Dahua TPC-BF1241 Hardware solutions / Other hardware appliances Dahua TPC-BF2221 Hardware solutions / Other hardware appliances Dahua TPC-SD2221 Hardware solutions / Other hardware appliances Dahua TPC-BF5X01 Hardware solutions / Other hardware appliances Dahua TPC-BF5X21 Hardware solutions / Other hardware appliances Dahua TPC-SD8X21 Hardware solutions / Other hardware appliances Dahua TPC-PT8X21B Hardware solutions / Other hardware appliances Dahua NVR1XXX Hardware solutions / Other hardware appliances Dahua NVR4XXX Hardware solutions / Other hardware appliances Dahua NVR4x Hardware solutions / Other hardware appliances Dahua NVR2XXX Hardware solutions / Other hardware appliances Dahua NVR5XXX Hardware solutions / Other hardware appliances Dahua NVR6XX Hardware solutions / Other hardware appliances Dahua XVR5x16 Hardware solutions / Other hardware appliances Dahua XVR7x16 Hardware solutions / Other hardware appliances Dahua XVR5x08 Hardware solutions / Other hardware appliances Dahua XVR5x04 Hardware solutions / Other hardware appliances Dahua XVR7x32 Hardware solutions / Other hardware appliances Dahua XVR4x08 Hardware solutions / Other hardware appliances Dahua XVR4x04 Hardware solutions / Other hardware appliances |
| Vendor | Dahua Technology |
Security Bulletin
This security bulletin contains information about 2 vulnerabilities.
1) Improper Authentication
EUVDB-ID: #VU96446
Risk: Critical
CVSSv4.0: 9.3 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A/U:Red]
CVE-ID: CVE-2021-33044
CWE-ID:
CWE-287 - Improper Authentication
Exploit availability: Yes
DescriptionThe vulnerability allows a remote attacker to bypass authentication process.
The vulnerability exists due to an error when processing authentication requests. A remote attacker can bypass authentication process and gain unauthorized access to the device.
Install updates from vendor's website.
Vulnerable software versionsDahua IPC-HX1XXX: All versions
Dahua IPC-HX2XXX: All versions
Dahua IPC-HX3XXX: All versions
Dahua IPC-HX5(4)(3)XXX: All versions
Dahua IPC-HX5XXX: All versions
Dahua IPC-HUM7XXX: All versions
Dahua IPC-HX8XXX: All versions
Dahua VTO75X95X: All versions
Dahua VTO65XXX: All versions
Dahua DHI-ASI7213Y-V3-T1: All versions
Dahua VTH542XH: All versions
Dahua SD1A1: All versions
Dahua SD22: All versions
Dahua SD49: All versions
Dahua SD50: All versions
Dahua SD52C: All versions
Dahua SD6AL: All versions
Dahua TPC-BF1241: All versions
Dahua TPC-BF2221: All versions
Dahua TPC-SD2221: All versions
Dahua TPC-BF5X01: All versions
Dahua TPC-BF5X21: All versions
Dahua TPC-SD8X21: All versions
Dahua TPC-PT8X21B: All versions
CPE2.3- cpe:2.3:h:dahua_technology:dahua_ipc-hx1xxx:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_ipc-hx2xxx:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_ipc-hx3xxx:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_ipc-hx5_4_3_xxx:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_ipc-hx5xxx:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_ipc-hum7xxx:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_ipc-hx8xxx:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_vto75x95x:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_vto65xxx:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_dhi-asi7213y-v3-t1:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_vth542xh:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_sd1a1:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_sd22:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_sd49:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_sd50:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_sd52c:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_sd6al:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_tpc-bf1241:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_tpc-bf2221:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_tpc-sd2221:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_tpc-bf5x01:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_tpc-bf5x21:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_tpc-sd8x21:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_tpc-pt8x21b:*:*:*:*:*:*:*:*
https://www.dahuasecurity.com/aboutUs/trustedCenter/details/582
https://seclists.org/fulldisclosure/2021/Oct/13
https://packetstormsecurity.com/files/164423/Dahua-Authentication-Bypass.html
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
Yes. This vulnerability is being exploited in the wild.
2) Improper Authentication
EUVDB-ID: #VU96447
Risk: Critical
CVSSv4.0: 9.3 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A/U:Red]
CVE-ID: CVE-2021-33045
CWE-ID:
CWE-287 - Improper Authentication
Exploit availability: Yes
DescriptionThe vulnerability allows a remote attacker to bypass authentication process.
The vulnerability exists due to an error when processing authentication requests. A remote attacker can bypass authentication process and gain unauthorized access to the device. MitigationInstall updates from vendor's website.
Vulnerable software versionsDahua IPC-HX1XXX: All versions
Dahua IPC-HX2XXX: All versions
Dahua IPC-HX3XXX: All versions
Dahua IPC-HX5(4)(3)XXX: All versions
Dahua IPC-HX5XXX: All versions
Dahua IPC-HUM7XXX: All versions
Dahua IPC-HX8XXX: All versions
Dahua VTO75X95X: All versions
Dahua VTO65XXX: All versions
Dahua VTH542XH: All versions
Dahua NVR1XXX: All versions
Dahua NVR4XXX: All versions
Dahua NVR4x: All versions
Dahua NVR2XXX: All versions
Dahua NVR5XXX: All versions
Dahua NVR6XX: All versions
Dahua XVR5x16: All versions
Dahua XVR7x16: All versions
Dahua XVR5x08: All versions
Dahua XVR5x04: All versions
Dahua XVR7x32: All versions
Dahua XVR4x08: All versions
Dahua XVR4x04: All versions
CPE2.3- cpe:2.3:h:dahua_technology:dahua_ipc-hx1xxx:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_ipc-hx2xxx:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_ipc-hx3xxx:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_ipc-hx5_4_3_xxx:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_ipc-hx5xxx:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_ipc-hum7xxx:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_ipc-hx8xxx:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_vto75x95x:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_vto65xxx:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_vth542xh:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_nvr1xxx:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_nvr4xxx:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_nvr4x:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_nvr2xxx:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_nvr5xxx:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_nvr6xx:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_xvr5x16:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_xvr7x16:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_xvr5x08:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_xvr5x04:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_xvr7x32:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_xvr4x08:*:*:*:*:*:*:*:*
- cpe:2.3:h:dahua_technology:dahua_xvr4x04:*:*:*:*:*:*:*:*
https://www.dahuasecurity.com/aboutUs/trustedCenter/details/582
https://seclists.org/fulldisclosure/2021/Oct/13
https://packetstormsecurity.com/files/164423/Dahua-Authentication-Bypass.html
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
Yes. This vulnerability is being exploited in the wild.
