CVE-2013-3613

EPSS 8.49%
Veröffentlicht 17.09.2013 12:04:24
Zuletzt bearbeitet 11.04.2025 00:51:21
Quelle cret@cert.org
CVE-Watchlists
Login
Unerledigt
Login

Dahua DVR appliances do not properly restrict UPnP requests, which makes it easier for remote attackers to obtain access via vectors involving a replay attack against the TELNET port.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Dahuasecurity ≫ Dvr0404hd-a Version-

Dahuasecurity ≫ Dvr0404hd-l Version-

Dahuasecurity ≫ Dvr0404hd-s Version-

Dahuasecurity ≫ Dvr0404hd-u Version-

Dahuasecurity ≫ Dvr0404hf-a-e Version-

Dahuasecurity ≫ Dvr0404hf-al-e Version-

Dahuasecurity ≫ Dvr0404hf-s-e Version-

Dahuasecurity ≫ Dvr0404hf-u-e Version-

Dahuasecurity ≫ Dvr0804 Version-

Dahuasecurity ≫ Dvr0804hd-l Version-

Dahuasecurity ≫ Dvr0804hd-s Version-

Dahuasecurity ≫ Dvr0804hf-a-e Version-

Dahuasecurity ≫ Dvr0804hf-al-e Version-

Dahuasecurity ≫ Dvr0804hf-l-e Version-

Dahuasecurity ≫ Dvr0804hf-s-e Version-

Dahuasecurity ≫ Dvr0804hf-u-e Version-

Dahuasecurity ≫ Dvr1604hd-l Version-

Dahuasecurity ≫ Dvr1604hd-s Version-

Dahuasecurity ≫ Dvr1604hf-a-e Version-

Dahuasecurity ≫ Dvr1604hf-al-e Version-

Dahuasecurity ≫ Dvr1604hf-l-e Version-

Dahuasecurity ≫ Dvr1604hf-s-e Version-

Dahuasecurity ≫ Dvr1604hf-u-e Version-

Dahuasecurity ≫ Dvr2104c Version-

Dahuasecurity ≫ Dvr2104h Version-

Dahuasecurity ≫ Dvr2104hc Version-

Dahuasecurity ≫ Dvr2104he Version-

Dahuasecurity ≫ Dvr2108c Version-

Dahuasecurity ≫ Dvr2108h Version-

Dahuasecurity ≫ Dvr2108hc Version-

Dahuasecurity ≫ Dvr2108he Version-

Dahuasecurity ≫ Dvr2116c Version-

Dahuasecurity ≫ Dvr2116h Version-

Dahuasecurity ≫ Dvr2116hc Version-

Dahuasecurity ≫ Dvr2116he Version-

Dahuasecurity ≫ Dvr2404hf-s Version-

Dahuasecurity ≫ Dvr2404lf-al Version-

Dahuasecurity ≫ Dvr2404lf-s Version-

Dahuasecurity ≫ Dvr3204hf-s Version-

Dahuasecurity ≫ Dvr3204lf-al Version-

Dahuasecurity ≫ Dvr3204lf-s Version-

Dahuasecurity ≫ Dvr3224l Version-

Dahuasecurity ≫ Dvr3232l Version-

Dahuasecurity ≫ Dvr5104c Version-

Dahuasecurity ≫ Dvr5104h Version-

Dahuasecurity ≫ Dvr5104he Version-

Dahuasecurity ≫ Dvr5108c Version-

Dahuasecurity ≫ Dvr5108h Version-

Dahuasecurity ≫ Dvr5108he Version-

Dahuasecurity ≫ Dvr5116c Version-

Dahuasecurity ≫ Dvr5116h Version-

Dahuasecurity ≫ Dvr5116he Version-

Dahuasecurity ≫ Dvr5204a Version-

Dahuasecurity ≫ Dvr5204l Version-

Dahuasecurity ≫ Dvr5208a Version-

Dahuasecurity ≫ Dvr5208l Version-

Dahuasecurity ≫ Dvr5216a Version-

Dahuasecurity ≫ Dvr5216l Version-

Dahuasecurity ≫ Dvr5404 Version-

Dahuasecurity ≫ Dvr5408 Version-

Dahuasecurity ≫ Dvr5416 Version-

Dahuasecurity ≫ Dvr5804 Version-

Dahuasecurity ≫ Dvr5808 Version-

Dahuasecurity ≫ Dvr5816 Version-

Dahuasecurity ≫ Dvr6404lf-s Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	8.49%	0.92

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.8	10	6.9	AV:N/AC:L/Au:N/C:C/I:N/A:N

CWE-287 Improper Authentication

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

http://www.kb.cert.org/vuls/id/800094

US Government Resource

https://nvd.nist.gov/vuln/detail/CVE-2013-3613

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2013-3613

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2013-3613

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2013-3613