CVE-2020-9499
HIGHDahuasecurity N54b2p Firmware < 2019-12 - Buffer Overflow
Title source: ruleDescription
Some Dahua products have buffer overflow vulnerabilities. After the successful login of the legal account, the attacker sends a specific DDNS test command, which may cause the device to go down.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_misc
https://www.dahuasecurity.com/support/cybersecurity/details/727
Scores
CVSS v3
7.2
EPSS
0.0053
EPSS Percentile
67.5%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-120
Status
published
Products (19)
dahuasecurity/ipc-hx2xxx_firmware
< 2019-12
dahuasecurity/ipc-hx5842h_firmware
< 2019-12
dahuasecurity/ipc-hx7842h_firmware
< 2019-12
dahuasecurity/ipc-hxxx5x4x_firmware
< 2019-12
dahuasecurity/n42b1p_firmware
< 2019-12
dahuasecurity/n42b2p_firmware
< 2019-12
dahuasecurity/n42b3p_firmware
< 2019-12
dahuasecurity/n52a4p_firmware
< 2019-12
dahuasecurity/n52b2p_firmware
< 2019-12
dahuasecurity/n52b3p_firmware
< 2019-12
... and 9 more
Published
Apr 09, 2020
Tracked Since
Feb 18, 2026