Is CVE-2013-6117 actively exploited?

CVE-2013-6117 has no public evidence of in-the-wild exploitation as of 2025-04-12.

What is the CVSS score for CVE-2013-6117?

CVE-2013-6117 has a CVSS score of 7.5 (UNKNOWN severity). Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P.

How do I patch CVE-2013-6117?

Patch guidance is available from dahuasecurity security advisories. CVEDatabase generates AI-assisted remediation guidance on demand for CVE-2013-6117.

CVE-2013-6117 - remediation guidance & executive summary

Q: Which products are affected by CVE-2013-6117?

2 products: dahuasecurity dvr firmware, dahuasecurity dvr firmware.

Description

Dahua DVR 2.608.0000.0 and 2.608.GV00.0 allows remote attackers to bypass authentication and obtain sensitive information including user credentials, change user passwords, clear log files, and perform other actions via a request to TCP port 37777.

CVSS Metrics

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Access Vector: network
Access Cmplx: low
Auth: none
Confidentiality: partial
Integrity: partial
Availability: partial
Weaknesses: CWE-287 · Improper Authentication

Metadata

Primary Vendor: DAHUASECURITY
Published: 7/11/2014
Last Modified: 4/12/2025
Source: NIST NVD
Note: Verify all details with official vendor sources before applying patches.

CVE-2013-6117

Description

CVSS Metrics

Metadata

Affected Products

Remediation Guidance

Executive Summary