These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.
A vulnerability has been found in some Dahua products could allow an unauthenticated remote attacker to send a specially crafted packet, triggering an exception that causes the system to reboot unexpectedly, resulting in a denial of service. This vulnerability has a CVSS score of 8.7 and is classified as HIGH severity.
CVE-2026-29115 is a medium-severity vulnerability (CVSS Score: 6.9) that affects certain Dahua products. An authenticated remote attacker can exploit this vulnerability by sending a specially crafted packet, triggering an exception that causes the system to reboot unexpectedly, resulting in a denial of service. The vulnerability was published on [cvePublishedAt] and last modified on [cveModifiedAt].
A vulnerability has been found in some Dahua products. An attacker may obtain the device’s CA root certificate. If that CA is installed and trusted on client systems, the attacker could issue fraudulent certificates trusted by those clients and undermine the certificate trust chain.
CVE-2021-33045 is a Dahua IP Camera Firmware authentication bypass vulnerability that CISA added to its Known Exploited Vulnerabilities catalog on 2024-08-21. Because CISA classified it as known exploited, organizations using affected Dahua IP camera firmware should treat it as a high-priority defensive issue and follow vendor mitigation guidance or remove the product if mitigations are not available.
CVE-2021-33044 is a Dahua IP Camera Firmware authentication bypass vulnerability that CISA added to its Known Exploited Vulnerabilities catalog on 2024-08-21. Because it is on the KEV list, affected organizations should treat it as an urgent remediation item and follow Dahua’s mitigation guidance. CISA’s stated action is to apply vendor mitigations or discontinue use of the product if mitigations are unavailable.