CVE-2020-9499

Summary

Some Dahua products have buffer overflow vulnerabilities. After the successful login of the legal account, the attacker sends a specific DDNS test command, which may cause the device to go down.

Affected Software

VendorProductVersion RangeStatus
n/aIPC-HX2XXX Series,IPC-HXXX5X4X Series,IPC-HX5842H,IPC-HX7842H,NVR 5x Series,NVR 4x Series,SD6AL Series,SD5A Series,SD1A Series,PTZ1A Series,SD50/52C SeriesVersions which Build time before December,2019affected

Weaknesses

  • Denial of Service

ADP Enrichment

CVE Program Container

Additional References

References