Remote Access Vulnerability in Dahua DVR Appliances via UPnP
CVE-2013-3613

Currently unrated

Key Information:

Vendor: Dahuasecurity
Status: Dvr2104h; Dvr0404hd-a; Dvr1604hd-l; Dvr2104hc
Vendor: CVE Published:; 17 September 2013

🔔 Create Dahuasecurity Vulnerability Alert

What is CVE-2013-3613?

Dahua DVR appliances have a vulnerability stemming from insufficient restrictions on UPnP requests. This flaw enables remote attackers to exploit the system through a replay attack targeting the TELNET port, potentially compromising device security and granting unauthorized access.

References

http://www.kb.cert.org/vuls/id/800094

third-party-advisoryx_refsource_CERT-VN

EPSS Score

12% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Sep 17, 2013

CVE-2013-3613 Data

JSON