CVE-2022-30562 Information

Description

If the user enables the https function on the device an attacker can modify the user’s request data packet through a man-in-the-middle attack Injection of a malicious URL in the Host: header of the HTTP Request results in a 302 redirect to an attacker-controlled page.

Reference

https://www.dahuasecurity.com/support/cybersecurity/details/1017