CVE-2017-7925

critical-risk

Published 2017-05-06

A Password in Configuration File issue was discovered in Dahua DH-IPC-HDBW23A0RN-ZS, DH-IPC-HDBW13A0SN, DH-IPC-HDW1XXX, DH-IPC-HDW2XXX, DH-IPC-HDW4XXX, DH-IPC-HFW1XXX, DH-IPC-HFW2XXX, DH-IPC-HFW4XXX, DH-SD6CXX, DH-NVR1XXX, DH-HCVR4XXX, DH-HCVR5XXX, DHI-HCVR51A04HE-S3, DHI-HCVR51A08HE-S3, and DHI-HCVR58A32S-S2 devices. The password in configuration file vulnerability was identified, which could lead to a malicious user assuming the identity of a privileged user and gaining access to sensitive information.

Do I need to act?

80.4% chance of exploitation in next 30 days

EPSS score — higher than 20% of all CVEs

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 9.8/10 Critical

NETWORK / LOW complexity

Affected Products (15)

Dh-Ipc-Hdbw23A0Rn-Zs Firmware

Dh-Ipc-Hdw2Xxx Firmware

Dh-Ipc-Hdw4Xxx Firmware

Dh-Ipc-Hfw4Xxx Firmware

Dh-Nvr1Xxx Firmware

Dh-Hcvr4Xxx Firmware

Dh-Hcvr5Xxx Firmware

Dhi-Hcvr51A08He-S3 Firmware

Dhi-Hcvr58A32S-S2 Firmware

Dh-Ipc-Hdbw13A0Sn Firmware

Dh-Ipc-Hdw1Xxx Firmware

Dh-Ipc-Hfw1Xxx Firmware

Dh-Ipc-Hfw2Xxx Firmware

Dh-Sd6Cxx Firmware

Dhi-Hcvr51A04He-S3 Firmware

Affected Vendors

Dahuasecurity

References (6)

Patch http://us.dahuasecurity.com/en/us/Security-Bulletin_030617.php

Third Party Advisory http://www.securityfocus.com/bid/98312

Mitigation https://ics-cert.us-cert.gov/advisories/ICSA-17-124-02

Patch http://us.dahuasecurity.com/en/us/Security-Bulletin_030617.php

Third Party Advisory http://www.securityfocus.com/bid/98312

Mitigation https://ics-cert.us-cert.gov/advisories/ICSA-17-124-02

/ 100

critical-risk

Severity 32/34 · Critical

Exploitability 20/34 · Moderate

Exposure 18/34 · Moderate