Fixed Intel

CISA Known Exploited Vulnerability

This vulnerability is actively exploited in the wild and listed in the CISA Known Exploited Vulnerabilities catalog.

Remediation Deadline: Sep 11, 2024

CVE-2021-33044

High
EPSS 94.3%CISA KEV
Dahua/IP Camera Firmware

Description

Dahua IP cameras and related products contain an authentication bypass vulnerability when the NetKeyboard type argument is specified by the client during authentication.

EPSS — Exploit Probability

94.3%

Higher than 99.9% of all CVEs

Required Action

https://www.dahuasecurity.com/aboutUs/trustedCenter/details/582; https://nvd.nist.gov/vuln/detail/CVE-2021-33044

Related Articles (1)

Industry News

Iran-Linked MuddyWater Hackers Target U.S. Networks With New Dindoor Backdoor

Iran-linked MuddyWater hackers breached U.S. networks with new Dindoor malware as regional cyber attacks escalate amid Middle East conflict.

Mar 6, 2026

Risk Assessment

HIGH
In CISA KEV
High EPSS

Details

Severity
High
EPSS
94.3%
CISA KEV
Yes
Ransomware
Unknown
Articles
1

Timeline

Published

Aug 21, 2024

Added to KEV

Aug 21, 2024

Remediation Due

Sep 11, 2024

Affected Product

Dahua

IP Camera Firmware

View all Dahua CVEs

External Links

NVD (NIST)CVE DetailsMITRE CVE