lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening PHC | |
Open Source and information security mailing list archives
| ||
|
Date: Mon, 6 Sep 2021 15:41:14 +0000 From: bashis <mcw@...mail.eu> To: "fulldisclosure@...lists.org" <fulldisclosure@...lists.org> Subject: [FD] Dahua CVE-2021-33044, CVE-2021-33045 Greetings, Two independent authentication bypass has been found in Dahua (and their OEMs) devices. Due to the very high potential of another "Dahua mass hack", I will keep Full Disclosure details until October 6, 2021. Highly recommend upgrading the firmware until then. Dahua advisory: https://www.dahuasecurity.com/support/cybersecurity/details/957 Have a nice day, https://github.com/mcw0/PoC /bashis _______________________________________________ Sent through the Full Disclosure mailing list https://nmap.org/mailman/listinfo/fulldisclosure Web Archives & RSS: http://seclists.org/fulldisclosure/
Powered by blists - more mailing lists