Denial of Service Vulnerability in Dahua Security Products
CVE-2026-29115

6.9MEDIUM

Key Information:

Vendor

Dahua

Status
Vendor
CVE Published:
10 June 2026

What is CVE-2026-29115?

A vulnerability identified in various Dahua security products enables an authenticated remote attacker to transmit a specially crafted packet. This can trigger an exception within the system, leading to an unexpected reboot of the device. Consequently, this vulnerability poses a risk of denial of service, impacting the availability and functionality of the affected products.

Affected Version(s)

IPC/SD Affected products are limited to certain models of IPC and SD devices with a build time before March 26, 2026.

References

CVSS V4

Score:
6.9
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.