Some Dahua software products have a vulnerability of unauthenticated request of AES crypto key. An attacker can obtain the AES crypto key by sending a specific crafted packet to the vulnerable interface.
References
History

No history.

cve-icon MITRE Information

Status: PUBLISHED

Assigner: dahua

Published: 2022-12-27T00:00:00

Updated: 2022-12-27T00:00:00

Reserved: 2022-11-14T00:00:00


Link: CVE-2022-45424

JSON object: View

cve-icon NVD Information

Status : Analyzed

Published: 2022-12-27T18:15:10.450

Modified: 2023-08-08T14:22:24.967


Link: CVE-2022-45424

JSON object: View

cve-icon Redhat Information

No data.

CWE