PT-2022-20177 · Dahuasecurity · Asi7213X-T1 Firmware+31
Published
2022-06-28
·
Updated
2022-07-13
·
CVE-2022-30562
CVSS v3.1
4.7
Medium
| Vector | AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
No specific software or versions are mentioned in the provided descriptions.
Description
The issue allows an attacker to modify a user's request data packet through a man-in-the-middle attack if the user has enabled the HTTPS function on the device. Specifically, injecting a malicious URL in the
Host: header of the HTTP Request can result in a 302 redirect to an attacker-controlled page.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Open Redirect
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Asi7213X-T1 Firmware
Asi7213X Firmware
Asi7223X-A-T1 Firmware
Asi7223X-A Firmware
Ipc-Hdbw2230E-S-S2 Firmware
Ipc-Hdbw2231E-S-S2 Firmware
Ipc-Hdbw2231F-As-S2 Firmware
Ipc-Hdbw2231R-Zas-S2 Firmware
Ipc-Hdbw2431E-S-S2 Firmware
Ipc-Hdbw2431R-Zas-S2 Firmware
Ipc-Hdbw2531E-S-S2 Firmware
Ipc-Hdbw2531R-Zas-S2 Firmware
Ipc-Hdbw2831E-S-S2 Firmware
Ipc-Hdbw2831R-Zas-S2 Firmware
Ipc-Hfw2230S-S-S2 Firmware
Ipc-Hfw2231M-As-I2-B-S2 Firmware
Ipc-Hfw2231S-S-S2 Firmware
Ipc-Hfw2231T-As-S2 Firmware
Ipc-Hfw2231T-Zas-S2 Firmware
Ipc-Hfw2239M-As-Led-B-S2 Firmware
Ipc-Hfw2239S-Sa-Led-S2 Firmware
Ipc-Hfw2431S-S-S2 Firmware
Ipc-Hfw2431T-As-S2 Firmware
Ipc-Hfw2431T-Zas-S2 Firmware
Ipc-Hfw2439M-As-Led-B-S2 Firmware
Ipc-Hfw2439S-Sa-Led-S2 Firmware
Ipc-Hfw2531S-S-S2 Firmware
Ipc-Hfw2531T-As-S2 Firmware
Ipc-Hfw2531T-Zas-S2 Firmware
Ipc-Hfw2831S-S-S2 Firmware
Ipc-Hfw2831T-As-S2 Firmware
Ipc-Hfw2831T-Zas-S2 Firmware