Dahua Technology Co., Ltd Digital Video Recorders and IP Cameras
Act Now9.8ICS-CERT ICSA-17-124-02May 4, 2017
Attack VectorNetwork
Auth RequiredNone
ComplexityLow
User InteractionNone needed
Summary
Dahua digital video recorders and IP cameras contain improper access control vulnerabilities (CWE-836, CWE-260) that allow remote attackers to bypass authentication and gain unauthorized access to device management functions. Affected models include the DH-IPC-HDBW and DH-IPC-HFW camera series, DH-NVR network video recorders, DH-HCVR and DH-HCVR5 hybrid recorders, and related storage devices. The vendor has stated no fix is available for any affected product model.
What this means
What could happen
An attacker with network access to Dahua cameras or recorders could gain complete control of the device without authentication, including accessing recorded video, changing settings, or stopping camera functionality. This could compromise facility surveillance and enable further network attacks.
Who's at risk
Water utilities, electric utilities, and other municipal facilities using Dahua IP cameras or digital video recorders for surveillance. This includes the DH-IPC (compact cameras), DH-NVR (network recorders), DH-HCVR (hybrid recorders), and SD6CXX (storage devices) product lines. Any facility using these for security monitoring is affected.
How it could be exploited
An attacker sends a crafted request over the network to the Dahua device's web interface or management port (typically HTTP/HTTPS), exploiting improper access controls. No credentials are required; the vulnerability allows direct bypass of authentication mechanisms.
Prerequisites
- Network connectivity to the Dahua device on its web management port (default port 80 or 443)
- The device must be reachable from the attacker's location (directly from internet or same network segment)
Remotely exploitableNo authentication requiredLow attack complexityHigh EPSS score (80.4%)No patch availablePublic exploits availableAffects surveillance systems
Exploitability
High exploit probability (EPSS 80.4%)
Affected products (15)
15 EOL
ProductAffected VersionsFix Status
Digital Video Recorders and IP Cameras - DH-IPC-HDBW23A0RN-ZS,DH-IPC-HDBW23A0RN-ZS,No fix (EOL)
Digital Video Recorders and IP Cameras - DH-IPC-HDBW13A0SN,DH-IPC-HDBW13A0SN,No fix (EOL)
Digital Video Recorders and IP Cameras - DH-IPC-HDW1XXX,DH-IPC-HDW1XXX,No fix (EOL)
Digital Video Recorders and IP Cameras - DH-IPC-HDW2XXX,DH-IPC-HDW2XXX,No fix (EOL)
Digital Video Recorders and IP Cameras - DH-IPC-HDW4XXX,DH-IPC-HDW4XXX,No fix (EOL)
Digital Video Recorders and IP Cameras - DH-IPC-HFW1XXX,DH-IPC-HFW1XXX,No fix (EOL)
Digital Video Recorders and IP Cameras - DH-IPC-HFW2XXX,DH-IPC-HFW2XXX,No fix (EOL)
Digital Video Recorders and IP Cameras - DH-IPC-HFW4XXX,DH-IPC-HFW4XXX,No fix (EOL)
Remediation & Mitigation
0/5
Do now
0/2WORKAROUNDRestrict network access to Dahua devices by implementing firewall rules to allow only trusted management workstations or control system networks to reach the web interface ports
WORKAROUNDDisable remote web access to the devices if not operationally required; configure the device to accept management connections only from local network or VPN
Schedule — requires maintenance window
0/1Patching may require device reboot — plan for process interruption
HARDENINGMonitor network traffic to Dahua devices for suspicious access attempts; implement intrusion detection signatures if available
Mitigations - no patch available
0/2The following products have reached End of Life with no planned fix: Digital Video Recorders and IP Cameras - DH-IPC-HDBW23A0RN-ZS,, Digital Video Recorders and IP Cameras - DH-IPC-HDBW13A0SN,, Digital Video Recorders and IP Cameras - DH-IPC-HDW1XXX,, Digital Video Recorders and IP Cameras - DH-IPC-HDW2XXX,, Digital Video Recorders and IP Cameras - DH-IPC-HDW4XXX,, Digital Video Recorders and IP Cameras - DH-IPC-HFW1XXX,, Digital Video Recorders and IP Cameras - DH-IPC-HFW2XXX,, Digital Video Recorders and IP Cameras - DH-IPC-HFW4XXX,, Digital Video Recorders and IP Cameras - DH-SD6CXX,, Digital Video Recorders and IP Cameras - DH-NVR1XXX,, Digital Video Recorders and IP Cameras - DH-HCVR5XXX, Digital Video Recorders and IP Cameras - DHI-HCVR51A04HE-S3,, Digital Video Recorders and IP Cameras - DHI-HCVR51A08HE-S3, and, Digital Video Recorders and IP Cameras - DHI-HCVR58A32S-S2, Digital Video Recorders and IP Cameras - DH-HCVR4XXX, and. Apply the following compensating controls:
HARDENINGPlace all Dahua devices on an isolated network segment separate from critical operational networks and business systems
HARDENINGEvaluate replacement of affected Dahua device models with alternative vendors that provide security patches
CVEs (2)
↑↓ Navigate · Esc Close
API:
/api/v1/advisories/3e435e37-de73-49ff-bfab-9d4240a32cd4