CVE-2025-31700HIGH 8.1EPSS p52.0%

CVE-2025-31700CVE-2025-31700

Description

A vulnerability has been found in Dahua products. Attackers could exploit a buffer overflow vulnerability by sending specially crafted malicious packets, potentially causing service disruption (e.g., crashes) or remote code execution (RCE). Some devices may have deployed protection mechanisms such as Address Space Layout Randomization (ASLR), which reduces the likelihood of successful RCE exploitation. However, denial-of-service (DoS) attacks remain a concern.

Scoring

CVSS 3.18.1 (HIGH)
VectorCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS0.80% probability of exploitation · percentile 52.0% · 2026-06-18T12:00:27Z
Published2025-07-23
Last modified2026-04-15

Underlying weaknesses· 1

CWE-120

References

  1. https://www.dahuasecurity.com/aboutUs/trustedCenter/details/775

1

TypeTargetConfidenceTier
WeaknessBuffer Copy without Checking Size of Input ('Classic Buffer Overflow')cwe-1200%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-31701
CVE
CVE-2026-29115
CVE
CVE-2026-29116
CVE
CVE-2025-1538
CVE
CVE-2025-66177
CVE
CVE-2025-2618
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.