| عنوان | i-DRIVE Dashcam i11, i12 Authentication Bypass by Primary Weakness |
|---|
| الوصف | Bypassing of device pairing - The dashcam's authentication mechanism relies on a default password combined with a second factor (device registration). However, the device pairing process is based on MAC address recognition, which can be bypassed. An attacker can obtain the MAC address of a paired device through methods such as ARP scanning, spoof the MAC address, and successfully connect to the dashcam without completing the pairing process. This grants unauthorized access to the device’s network. |
|---|
| المصدر | ⚠️ https://github.com/geo-chen/i-Drive |
|---|
| المستخدم | geochen (UID 78995) |
|---|
| ارسال | 27/02/2025 04:57 PM (1 سنة منذ) |
|---|
| الاعتدال | 03/03/2025 01:25 PM (4 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 298194 [i-Drive i11/i12 حتى 20250227 Device Pairing توثيق ضعيف] |
|---|
| النقاط | 20 |
|---|