When an attacker obtaining the administrative account and password, or through a man-in-the-middle attack, the attacker could send a specified crafted packet to the vulnerable interface then lead the device to crash.
https://www.dahuasecurity.com/support/cybersecurity/details/1017