4.7

CVE-2022-30562

EPSS 0.27%
Veröffentlicht 28.06.2022 14:15:08
Zuletzt bearbeitet 21.11.2024 07:02:56
Quelle cybersecurity@dahuatech.com
CVE-Watchlists
Login
Unerledigt
Login

If the user enables the https function on the device, an attacker can modify the user’s request data packet through a man-in-the-middle attack ,Injection of a malicious URL in the Host: header of the HTTP Request results in a 302 redirect to an attacker-controlled page.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Dahuasecurity ≫ Ipc-hdbw2431e-s-s2 Firmware Version < 2022-04

Dahuasecurity ≫ Ipc-hdbw2431e-s-s2 Version-

Dahuasecurity ≫ Ipc-hdbw2831e-s-s2 Firmware Version < 2022-04

Dahuasecurity ≫ Ipc-hdbw2831e-s-s2 Version-

Dahuasecurity ≫ Ipc-hdbw2230e-s-s2 Firmware Version < 2022-04

Dahuasecurity ≫ Ipc-hdbw2230e-s-s2 Version-

Dahuasecurity ≫ Ipc-hdbw2831r-zs-s2 Firmware Version < 2022-04

Dahuasecurity ≫ Ipc-hdbw2831r-zs-s2 Version-

Dahuasecurity ≫ Ipc-hdbw2831r-zas-s2 Firmware Version < 2022-04

Dahuasecurity ≫ Ipc-hdbw2831r-zas-s2 Version-

Dahuasecurity ≫ Ipc-hdbw2831e-s-s2 Firmware Version < 2022-04

Dahuasecurity ≫ Ipc-hdbw2831e-s-s2 Version-

Dahuasecurity ≫ Ipc-hdbw2531r-zs-s2 Firmware Version < 2022-04

Dahuasecurity ≫ Ipc-hdbw2531r-zs-s2 Version-

Dahuasecurity ≫ Ipc-hdbw2531r-zas-s2 Firmware Version < 2022-04

Dahuasecurity ≫ Ipc-hdbw2531r-zas-s2 Version-

Dahuasecurity ≫ Ipc-hdbw2531e-s-s2 Firmware Version < 2022-04

Dahuasecurity ≫ Ipc-hdbw2531e-s-s2 Version-

Dahuasecurity ≫ Ipc-hdbw2431r-zs-s2 Firmware Version < 2022-04

Dahuasecurity ≫ Ipc-hdbw2431r-zs-s2 Version-

Dahuasecurity ≫ Ipc-hdbw2431r-zas-s2 Firmware Version < 2022-04

Dahuasecurity ≫ Ipc-hdbw2431r-zas-s2 Version-

Dahuasecurity ≫ Ipc-hdbw2231f-as-s2 Firmware Version < 2022-04

Dahuasecurity ≫ Ipc-hdbw2231f-as-s2 Version-

Dahuasecurity ≫ Ipc-hdbw2231e-s-s2 Firmware Version < 2022-04

Dahuasecurity ≫ Ipc-hdbw2231e-s-s2 Version-

Dahuasecurity ≫ Ipc-hdbw2231r-zs-s2 Firmware Version < 2022-04

Dahuasecurity ≫ Ipc-hdbw2231r-zs-s2 Version-

Dahuasecurity ≫ Ipc-hdbw2231r-zas-s2 Firmware Version < 2022-04

Dahuasecurity ≫ Ipc-hdbw2231r-zas-s2 Version-

Dahuasecurity ≫ Ipc-hfw2231m-as-i2-b-s2 Firmware Version < 2022-04

Dahuasecurity ≫ Ipc-hfw2231m-as-i2-b-s2 Version-

Dahuasecurity ≫ Ipc-hfw2231t-as-s2 Firmware Version < 2022-04

Dahuasecurity ≫ Ipc-hfw2231t-as-s2 Version-

Dahuasecurity ≫ Ipc-hfw2231s-s-s2 Firmware Version < 2022-04

Dahuasecurity ≫ Ipc-hfw2231s-s-s2 Version-

Dahuasecurity ≫ Ipc-hfw2231t-zs-s2 Firmware Version < 2022-04

Dahuasecurity ≫ Ipc-hfw2231t-zs-s2 Version-

Dahuasecurity ≫ Ipc-hfw2231t-zas-s2 Firmware Version < 2022-04

Dahuasecurity ≫ Ipc-hfw2231t-zas-s2 Version-

Dahuasecurity ≫ Ipc-hfw2230s-s-s2 Firmware Version < 2022-04

Dahuasecurity ≫ Ipc-hfw2230s-s-s2 Version-

Dahuasecurity ≫ Ipc-hfw2431t-as-s2 Firmware Version < 2022-04

Dahuasecurity ≫ Ipc-hfw2431t-as-s2 Version-

Dahuasecurity ≫ Ipc-hfw2431t-zs-s2 Firmware Version < 2022-04

Dahuasecurity ≫ Ipc-hfw2431t-zs-s2 Version-

Dahuasecurity ≫ Ipc-hfw2431t-zas-s2 Firmware Version < 2022-04

Dahuasecurity ≫ Ipc-hfw2431t-zas-s2 Version-

Dahuasecurity ≫ Ipc-hfw2431s-s-s2 Firmware Version < 2022-04

Dahuasecurity ≫ Ipc-hfw2431s-s-s2 Version-

Dahuasecurity ≫ Ipc-hfw2531t-as-s2 Firmware Version < 2022-04

Dahuasecurity ≫ Ipc-hfw2531t-as-s2 Version-

Dahuasecurity ≫ Ipc-hfw2531t-zs-s2 Firmware Version < 2022-04

Dahuasecurity ≫ Ipc-hfw2531t-zs-s2 Version-

Dahuasecurity ≫ Ipc-hfw2531t-zas-s2 Firmware Version < 2022-04

Dahuasecurity ≫ Ipc-hfw2531t-zas-s2 Version-

Dahuasecurity ≫ Ipc-hfw2531s-s-s2 Firmware Version < 2022-04

Dahuasecurity ≫ Ipc-hfw2531s-s-s2 Version-

Dahuasecurity ≫ Ipc-hfw2831t-as-s2 Firmware Version < 2022-04

Dahuasecurity ≫ Ipc-hfw2831t-as-s2 Version-

Dahuasecurity ≫ Ipc-hfw2831t-zs-s2 Firmware Version < 2022-04

Dahuasecurity ≫ Ipc-hfw2831t-zs-s2 Version-

Dahuasecurity ≫ Ipc-hfw2831t-zas-s2 Firmware Version < 2022-04

Dahuasecurity ≫ Ipc-hfw2831t-zas-s2 Version-

Dahuasecurity ≫ Ipc-hfw2831s-s-s2 Firmware Version < 2022-04

Dahuasecurity ≫ Ipc-hfw2831s-s-s2 Version-

Dahuasecurity ≫ Ipc-hfw2439m-as-led-b-s2 Firmware Version < 2022-04

Dahuasecurity ≫ Ipc-hfw2439m-as-led-b-s2 Version-

Dahuasecurity ≫ Ipc-hfw2239m-as-led-b-s2 Firmware Version < 2022-04

Dahuasecurity ≫ Ipc-hfw2239m-as-led-b-s2 Version-

Dahuasecurity ≫ Ipc-hfw2439s-sa-led-s2 Firmware Version < 2022-04

Dahuasecurity ≫ Ipc-hfw2439s-sa-led-s2 Version-

Dahuasecurity ≫ Ipc-hfw2239s-sa-led-s2 Firmware Version < 2022-04

Dahuasecurity ≫ Ipc-hfw2239s-sa-led-s2 Version-

Dahuasecurity ≫ Asi7213x-t1 Firmware Version < 2021-09

Dahuasecurity ≫ Asi7213x-t1 Version-

Dahuasecurity ≫ Asi7223x-a-t1 Firmware Version < 2021-09

Dahuasecurity ≫ Asi7223x-a-t1 Version-

Dahuasecurity ≫ Asi7223x-a Firmware Version < 2021-09

Dahuasecurity ≫ Asi7223x-a Version-

Dahuasecurity ≫ Asi7213x Firmware Version < 2021-09

Dahuasecurity ≫ Asi7213x Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.27%	0.503

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	4.7	1.6	2.7	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N
nvd@nist.gov	4	4.9	4.9	AV:N/AC:H/Au:N/C:P/I:P/A:N

CWE-601 URL Redirection to Untrusted Site ('Open Redirect')

The web application accepts a user-controlled input that specifies a link to an external site, and uses that link in a redirect.

https://www.dahuasecurity.com/support/cybersecurity/details/1017

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2022-30562

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-30562

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-30562

EUVD