Remote Denial of Service Vulnerability in Dahua Security Products
CVE-2026-29116

8.7HIGH

Key Information:

Vendor

Dahua

Vendor
CVE Published:
10 June 2026

What is CVE-2026-29116?

A vulnerability has been identified in various Dahua security products that enables an unauthenticated remote attacker to send a specially crafted packet. This can lead to an exception that causes the affected system to reboot unexpectedly, subsequently resulting in a denial of service. Users are advised to implement necessary security measures to safeguard their systems.

Affected Version(s)

IPC/SD/NVR/XVR/EVS/VTO/VTH/ASI/TPC Affected products are limited to certain models of IPC, SD, NVR, XVR, EVS, VTO, VTH, ASI, and TPC devices with versions built before March 26, 2026.

References

CVSS V4

Score:
8.7
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.