CVE-2022-45428

Low

Some Dahua software products have a vulnerability of sensitive information leakage. After obtaining the permissions of administrators, by…

dahua·NVD-CWE-noinfo·Published 2022-12-27

CVSS

2.7

EPSS

0.01

KEV

Exploits

cve.orgen

250 chars

Some Dahua software products have a vulnerability of sensitive information leakage. After obtaining the permissions of administrators, by sending a specific crafted packet to the vulnerable interface, an attacker can obtain the debugging information.

NVDen

250 chars

NVDes

286 chars

Algunos productos de software de Dahua tienen la vulnerabilidad de fuga de información confidencial. Después de obtener los permisos de los administradores, al enviar un paquete manipulado específicamente a la interfaz vulnerable, un atacante puede obtener la información de depuración.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
3.1	Primary	cve.org	2.7	—	—	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N
3.1	Primary	NVD	2.7	1.2	1.4	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N