Access control vulnerability found in some Dahua product
Cybersecurity is an on-going challenge for all IoT connected device manufacturers and users, as it is for all digital products and services. Dahua Technology is committed to developing and maintaining state-of-the-art cybersecurity practices, including through our product design process and our customer-facing Dahua Cybersecurity Center (DHCC) for transparent vulnerability reporting and handling.
In response to the security issues reported by Nozomi Networks, Dahua immediately conducted a comprehensive investigation of affected product models and has developed patches and firmware that fix the vulnerabilities. Please download from https://www.dahuasecurity.com/support/downloadCenter or contact Dahua local technical support to upgrade.
More at https://www.dahuasecurity.com/support/cybersecurity/details/1017 & https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-30563