CVE-2021-33045

CRITICAL KEV NUCLEI

Dahua Multiple Devices Firmware - Authentication Bypass via Malicious Data Packet

Title source: llm

Exploitation Summary

CVE-2021-33045 is actively exploited and listed in the CISA Known Exploited Vulnerabilities (KEV) catalog, added August 21, 2024. EIP tracks 3 public exploits from researchers including dongpohezui, lequoca. A Nuclei detection template is also available.

AI-analyzed exploit summary This repository contains a functional MITM proxy script that exploits CVE-2021-33045, an authentication bypass vulnerability in Dahua cameras. The script intercepts and modifies HTTP requests to the `/RPC2_Login` endpoint, injecting a crafted session to bypass authentication.

Description

The identity authentication bypass vulnerability found in some Dahua products during the login process. Attackers can bypass device identity authentication by constructing malicious data packets.

Exploits (3)

nomisec WORKING POC 7 stars

by dongpohezui · poc

https://github.com/dongpohezui/cve-2021-33045

View Code ZIP pw:eip

This repository contains a functional MITM proxy script that exploits CVE-2021-33045, an authentication bypass vulnerability in Dahua cameras. The script intercepts and modifies HTTP requests to the `/RPC2_Login` endpoint, injecting a crafted session to bypass authentication.

Classification

Working Poc 90%

Attack Type

Auth Bypass

Complexity

Moderate

Reliability

Reliable

Target: Dahua cameras (specific versions not specified)

No auth needed

Prerequisites: MITM position (e.g., ARP spoofing, malicious proxy) · Victim must access the camera's web interface

MITRE ATT&CK

T1189 - Drive-by Compromise T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 18, 2026 Full analysis →

nomisec WORKING POC 1 stars

by lequoca · infoleak

https://github.com/lequoca/Camera-Dahua-CVE-2021-33045

View Code ZIP pw:eip

The repository contains a functional Python script that exploits CVE-2021-33045, an authentication bypass vulnerability in Dahua IP cameras. The script sends crafted HTTP requests with spoofed cookies to access sensitive configuration endpoints without valid authentication.

Classification

Working Poc 95%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: Dahua IP Cameras (various versions)

No auth needed

Prerequisites: Network access to the target camera · HTTP/HTTPS access to the camera's web interface

MITRE ATT&CK

T1189 - Drive-by Compromise T1078 - Valid Accounts

devstral-2 · analyzed Feb 19, 2026 Full analysis →

vulncheck_xdb WORKING POC

remote

https://github.com/Bd-Mutant7/DahuaLoginBypass

View Code ZIP pw:eip

This repository contains functional exploit code for bypassing authentication in Dahua cameras by overriding jQuery.extend to manipulate login parameters. It includes multiple methods targeting CVE-2021-33044 and CVE-2021-33045.

Classification

Working Poc 95%

Attack Type

Auth Bypass

Complexity

Moderate

Reliability

Reliable

Target: Dahua camera firmware (pre-Sept 2021)

No auth needed

Prerequisites: Access to Dahua camera login page · Browser extension environment (Chrome)

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1078 - Valid Accounts

devstral-2 · analyzed Apr 10, 2026 Full analysis →

Nuclei Templates (1)

Dahua IPC/VTH/VTO - Authentication Bypass

CRITICALby phantomowl

References (4)

Core 4

Core References

Vendor Advisory x_refsource_misc

https://www.dahuasecurity.com/support/cybersecurity/details/957

Exploit, Mailing List, Third Party Advisory mailing-list x_refsource_fulldisc

http://seclists.org/fulldisclosure/2021/Oct/13

Exploit, Third Party Advisory, VDB Entry x_refsource_misc

http://packetstormsecurity.com/files/164423/Dahua-Authentication-Bypass.html

US Government Resource

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-33045

Scores

CVSS v3 9.8

EPSS 0.9417

EPSS Percentile 99.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation active

Automatable yes

Technical Impact total

Details

CISA KEV 2024-08-21

VulnCheck KEV 2024-08-21

InTheWild.io 2024-08-21

ENISA EUVD EUVD-2021-19760

CWE

CWE-287

Status published

Products (19)

dahuasecurity/ipc-hum7xxx_firmware < 2.820.0000000.5.r.210705

dahuasecurity/ipc-hx3xxx_firmware < 2.800.0000000.29.r.210630

dahuasecurity/ipc-hx5xxx_firmware < 2.820.0000000.5.r.210705

dahuasecurity/nvr-1xxx_firmware < 4.001.0000005.1.r.210709

dahuasecurity/nvr-2xxx_firmware < 4.001.0000000.1.r.210710

dahuasecurity/nvr-4xxx_firmware < 4.001.0000005.1.r.210713

dahuasecurity/nvr-5xxx_firmware < 4.001.0000000.0.r.210710

dahuasecurity/nvr-6xx_firmware < 4.001.0000001.1.r.210716

dahuasecurity/vth-542xh_firmware < 4.500.0000002.0.r.210715

dahuasecurity/vto-65xxx_firmware < 4.300.0000004.0.r.210715

... and 9 more

Published Sep 15, 2021

KEV Added Aug 21, 2024

Tracked Since Feb 18, 2026