CVE-2026-29114

2.3LOW

Key Information:

Vendor: Dahua
Status: Ipc
Vendor: CVE Published:; 10 June 2026

What is CVE-2026-29114?

A vulnerability has been found in some Dahua products. An attacker may obtain the device’s CA root certificate. If that CA is installed and trusted on client systems, the attacker could issue fraudulent certificates trusted by those clients and undermine the certificate trust chain.

Affected Version(s)

IPC Some IPC models are affected, specifically those with a build date before April 15, 2026.

References

https://www.dahuasecurity.com/about-dahua/trust-center/da...

CVSS V4

Score:

2.3

Severity:

LOW

Confidentiality:

Low

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 10, 2026
Vulnerability Reserved
Mar 4, 2026

CVE-2026-29114 Data

JSON