CVE-2026-29114_CVE-2026-29114

2.3 / 10

LOW

CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N

Description

A vulnerability has been found in some Dahua products. An attacker
may obtain the device’s CA root certificate. If that CA is installed and
trusted on client systems, the attacker could issue fraudulent certificates
trusted by those clients and undermine the certificate trust chain.

Basic Information

ID CVE-2026-29114

Source dahua

Published Jun 10, 2026 at 05:44

Affected Product

Vendor Dahua

Product IPC

Version Some IPC models are affected, specifically those with a build date before April 15, 2026.

Affected Versions Dahua IPC Some IPC models are affected, specifically those with a build date before April 15, 2026.

CWE Classification

CWE-538

References

www.dahuasecurity.com /about-dahua/trust-center/dahua-psirt/dhcc-sa-202606-001:-security-advisory-%E2%80%93-vulnerabilities-found-in-some-dahua-products

{
    "lastseen": "",
    "description": "A vulnerability has been found in some Dahua products. An attacker\nmay obtain the device\u2019s CA root certificate. If that CA is installed and\ntrusted on client systems, the attacker could issue fraudulent certificates\ntrusted by those clients and undermine the certificate trust chain.",
    "published": "2026-06-10T05:44:50.397Z",
    "modified": "2026-06-10T05:44:50.397Z",
    "type": "cve",
    "title": "CVE-2026-29114",
    "source": "dahua",
    "references": "https://www.dahuasecurity.com/about-dahua/trust-center/dahua-psirt/dhcc-sa-202606-001:-security-advisory-%E2%80%93-vulnerabilities-found-in-some-dahua-products",
    "id": "CVE-2026-29114",
    "bulletinFamily": "",
    "cwe": [
        "CWE-538"
    ],
    "cvelist": null,
    "sourceData": "Dahua IPC Some IPC models are affected, specifically those with a build date before April 15, 2026.",
    "sourceHref": "",
    "cvss": {
        "score": 2.3,
        "severity": "LOW",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "IPC",
    "version": "Some IPC models are affected, specifically those with a build date before April 15, 2026.",
    "vendor": "Dahua",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}