Dahua Smart Cloud Gateway SQL Injection

Advisories

severity: high
date: June 30, 2025
Affecting: An affected version range remains undefined
CVE: CVE-2025-34059
CVE type: CWE-89: CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
CVSS: 8.7
CVSS V4 Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
References: Shadowserver Exploitation Evidence
CNBlogs Exploit
CNVD-2024-38747
Description: An SQL injection vulnerability exists in the Dahua Smart Cloud Gateway Registration Management Platform via the username parameter in the /index.php/User/doLogin endpoint. The application fails to properly sanitize user input, allowing unauthenticated attackers to inject arbitrary SQL statements and potentially disclose sensitive information. Exploitation evidence was observed by the Shadowserver Foundation on 2025-02-05 UTC.
VulnCheck KEV: This advisory is in the VulnCheck KEV database