CVE-2017-9315

Customer of Dahua IP camera or IP PTZ could submit relevant device information to receive a time limited temporary password from Dahua authorized dealer to reset the admin password. The algorithm used in this mechanism is potentially at risk of being compromised and subsequently utilized by attacker.

CONFIRM: http://www.dahuasecurity.com/annoucementsingle/security-advisory--admin-password-recovery-mechanism-in-some-dahua-ip-camera-and-ip-ptz-could-lead-to-security-risk_14731_221.html
CVE: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9315

14 years
257 countries
685k users
4536k calculations
Logo blog.camcloud.com
Logo sectech.co.nz
Logo www.clarecontrols.com
Logo www.use-ip.co.uk
Logo www.i4wifi.cz
Logo www.inv-technology.com