What is the dahua CNA?
dahua is a CVE Numbering Authority (CNA) — an organization authorized to assign CVE IDs to vulnerabilities in its scope. It has published 45 CVE records since 2017.
How many CVEs has dahua published?
dahua has published 45 CVE records, including 10 in the last two years.
What is dahua's CVE data quality grade?
RadicalNotion.AI grades dahua's CVE data quality as F, with an overall completeness score of 53.9%. This reflects how consistently its CVE records include vendor (42.2%), product (100%), CVSS (22.2%), and CWE (51.1%) information.
What products does dahua publish CVEs for?
dahua most frequently publishes CVEs for dhi-dss7016dr-s2 firmware, dss express, dhi-dss4004-s2 firmware, dhi-dss7016dr-s2, dhi-dss7016d-s2.
Which vendors does dahua cover?
dahua publishes CVEs across 4 distinct vendors, most often dahuasecurity, Dahua, Dahua Technology, Dahua Technologies, microsoft.
Is dahua actively publishing CVEs?
dahua is currently active, based on 10 CVEs in the last two years.
What is the average severity of dahua's CVEs?
The average CVSS base score across dahua's scored CVEs is 7.2.
How many critical CVEs has dahua published?
dahua has published 2 critical-severity CVEs and 11 high-severity CVEs.
Are any of dahua's CVEs in CISA's Known Exploited Vulnerabilities catalog?
Yes. 2 of dahua's CVEs are listed in CISA's Known Exploited Vulnerabilities (KEV) catalog, meaning they are confirmed to be exploited in the wild.
What are the most common weakness types in dahua's CVEs?
dahua's CVEs most often map to these CWE weakness types: CWE-306 (Missing Authentication for Critical Function), CWE-284 (Improper Access Control), CWE-770 (Allocation of Resources Without Limits or Throttling), CWE-287 (Improper Authentication).
How does dahua rank among CNAs?
By total CVE volume, dahua ranks #176 of 370 CNAs, and it reports more complete CVE records than 9% of all CNAs.
