Buffer Overflow Vulnerability in Dahua Products
CVE-2025-31701

8.1HIGH

Key Information:

Vendor

Dahua

Status
Ipc
Sd
Vendor
CVE Published:
23 July 2025

Badges

đź“° News Worthy

What is CVE-2025-31701?

A buffer overflow vulnerability has been identified in Dahua products that may be exploited by attackers through specially crafted malicious packets, potentially leading to service disruptions such as crashes or unauthorized execution of remote code. Although some devices might employ protection mechanisms like Address Space Layout Randomization (ASLR) to mitigate risks, the threat of denial-of-service (DoS) attacks remains a significant issue.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

IPC Affected products include certain models from the IPC-1XXX, IPC-2XXX, IPC-WX, and IPC-ECXX series, and limited to versions which build time before April 16, 2025.

SD Affected products include certain models from the SD3A, SD2A, SD3D, SDT2A, and SD2C series, and limited to versions which build time before April 16, 2025.

News Articles

favicon imageBitdefender

Vulnerabilities Identified in Dahua Hero C1 Smart Cameras

Researchers at Bitdefender have identified critical security vulnerabilities in the firmware of the Dahua Hero C1 (DH-H4C) smart camera series.

References

https://www.dahuasecurity.com/aboutUs/trustedCenter/detai...

CVSS V3.1

Score:
8.1
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • đź“°

    First article discovered by Bitdefender

  • Vulnerability published

  • Vulnerability Reserved

JSON
.