Vulnerability Details : CVE-2013-6117
Public exploit exists!
Dahua DVR 2.608.0000.0 and 2.608.GV00.0 allows remote attackers to bypass authentication and obtain sensitive information including user credentials, change user passwords, clear log files, and perform other actions via a request to TCP port 37777.
Vulnerability category: BypassGain privilege
Products affected by CVE-2013-6117
- cpe:2.3:o:dahuasecurity:dvr_firmware:2.608.0000.0:*:*:*:*:*:*:*
- cpe:2.3:o:dahuasecurity:dvr_firmware:2.608.gv00.0:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2013-6117
95.71%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 99 %
Percentile, the proportion of vulnerabilities that are scored at or less
Metasploit modules for CVE-2013-6117
-
Dahua DVR Auth Bypass Scanner
First seen: 2020-04-26auxiliary/scanner/misc/dahua_dvr_auth_bypassScans for Dahua-based DVRs and then grabs settings. Optionally resets a user's password and clears the device logs Authors: - Tyler Bennett - Talos Consulting - Jake Reynolds - Depth Security - Jon Hart <jon_hart@rapid7.com> - Nathan McBride
CVSS scores for CVE-2013-6117
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
CWE ids for CVE-2013-6117
-
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.Assigned by: nvd@nist.gov (Primary)
References for CVE-2013-6117
-
http://www.exploit-db.com/exploits/29673
Dahua DVR 2.608.0000.0/2.608.GV00.0 - Authentication Bypass (Metasploit) - Hardware webapps Exploit
-
http://packetstormsecurity.com/files/124022/Dahua-DVR-Authentication-Bypass.html
Dahua DVR Authentication Bypass ≈ Packet Storm
-
http://seclists.org/bugtraq/2013/Nov/62
Bugtraq: Dahua DVR Authentication Bypass - CVE-2013-6117
-
http://blog.depthsecurity.com/2013/11/dahua-dvr-authentication-bypass-cve.html
Dahua DVR Authentication Bypass - CVE-2013-6117
Jump to