CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-9317

Privilege escalation vulnerability found in some Dahua IP devices. Attacker in possession of low privilege account can gain access to credential information of high privilege account and further obtain device information or attack the device.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 58.3%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 4.0

References

Products affected by CVE-2017-9317

Dahuasecurity » Ipc-Hdbw4xxx » Version: N/A

cpe:2.3:h:dahuasecurity:ipc-hdbw4xxx:-
Dahuasecurity » Ipc-Hdbw5xxx » Version: N/A

cpe:2.3:h:dahuasecurity:ipc-hdbw5xxx:-
Dahuasecurity » Xvr5x04 » Version: N/A

cpe:2.3:h:dahuasecurity:xvr5x04:-
Dahuasecurity » Xvr5x08 » Version: N/A

cpe:2.3:h:dahuasecurity:xvr5x08:-
Dahuasecurity » Xvr5x16 » Version: N/A

cpe:2.3:h:dahuasecurity:xvr5x16:-
Dahuasecurity » Xvr7x16 » Version: N/A

cpe:2.3:h:dahuasecurity:xvr7x16:-
Dahuasecurity » Ipc-Hdbw4xxx Firmware » Version: N/A

cpe:2.3:o:dahuasecurity:ipc-hdbw4xxx_firmware:-
Dahuasecurity » Ipc-Hdbw4xxx Firmware » Version: 2.621.0000.28.r.20170912

cpe:2.3:o:dahuasecurity:ipc-hdbw4xxx_firmware:2.621.0000.28.r.20170912
Dahuasecurity » Ipc-Hdbw5xxx Firmware » Version: N/A

cpe:2.3:o:dahuasecurity:ipc-hdbw5xxx_firmware:-
Dahuasecurity » Ipc-Hdbw5xxx Firmware » Version: 2.621.0000.28.r.20170912

cpe:2.3:o:dahuasecurity:ipc-hdbw5xxx_firmware:2.621.0000.28.r.20170912
Dahuasecurity » Xvr5x04 Firmware » Version: Any

cpe:2.3:o:dahuasecurity:xvr5x04_firmware:*
Dahuasecurity » Xvr5x08 Firmware » Version: Any

cpe:2.3:o:dahuasecurity:xvr5x08_firmware:*
Dahuasecurity » Xvr5x16 Firmware » Version: Any

cpe:2.3:o:dahuasecurity:xvr5x16_firmware:*
Dahuasecurity » Xvr7x16 Firmware » Version: Any

cpe:2.3:o:dahuasecurity:xvr7x16_firmware:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-9317

Products

Pricing

Contact Us