通信和監視安控系統的部落格

Dahua New Critical Vulnerability 2019 大華產品被發現2019新的嚴重資安漏洞 Sep 23, 2019 IPVM Dahua has quietly admitted 5 new vulnerabilities including 1 critical vulnerability with a 9.8 / 10.0 CVSS score and 2 high vulnerabilities (scored 7.0 - 9.0), found by researchers from the University of Applied Sciences Offenburg who are setting up a startup, IoT Security Systems. 大陸大華監控產品已承認了5個新的資安漏洞，其中包括1個關鍵漏洞（CVSS漏洞評鑑系統評分為9.8 / 10.0）和2個較高漏洞（得分7.0-9.0），這些資安漏洞是由Offenburg應用科學大學的研究人員發現的，他們正在為一家初創公司建立IoT安全系統 IPVM這篇報導中說明這些漏洞的嚴重性，普遍的用戶回應以及對大華產品經銷商和OEM廠商的影響 更值得注意的事這些資安漏洞是額外發現的，與上個月被發現披露的大華產品容易被竊聽入侵漏洞是不同第二回事 Inside this note, we examine the severity of these vulnerabilities, Dahua's response and impact on dealers and OEMs of Dahua. These vulnerabilities are in addition and separate from the Dahua wiretapping vulnerability disclosed last month.