CVE-2021-33045 - Dahua IP Camera Authentication Bypass Vulnerability

CVE-2021-33045: Dahua | IP Camera Firmware

Date Added:
2024-08-21

Due Date:
2024-09-11

Vulnerability Name: Dahua IP Camera Authentication Bypass Vulnerability

Description: Dahua IP cameras and related products contain an authentication bypass vulnerability when the loopback device is specified by the client during authentication.

Known To Be Used in Ransomware Campaigns?: Unknown

Action: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Additional Notes: https://www.dahuasecurity.com/aboutUs/trustedCenter/details/582; https://nvd.nist.gov/vuln/detail/CVE-2021-33045