Soumettre #510952: i-DRIVE Dashcam i11, i12 Improper Access Controlsinformation

Titrei-DRIVE Dashcam i11, i12 Improper Access Controls
DescriptionRemotely Dump Video Footage and Live Video Stream - An attacker with network access can remotely enumerate all video recordings stored on the dashcam’s SD card via port 9091. These recordings can then be converted from JDR to MP4 format. Additionally, by opening a secondary socket to port 9092 and successfully validating the challenge-response key, an attacker can stream live footage. Extracted recordings may contain sensitive information, including location data.
La source⚠️ https://github.com/geo-chen/i-Drive
Utilisateur
 geochen (UID 78995)
Soumission27/02/2025 16:58 (il y a 1 Année)
Modérer03/03/2025 13:25 (4 days later)
StatutAccepté
Entrée VulDB298195 [i-Drive i11/i12 jusqu’à 20250227 Video Footage/Live Video Stream élévation de privilèges]
Points20

Might our Artificial Intelligence support you?

Check our Alexa App!