提出 #510955: i-DRIVE Dashcam i11, i12 Improper Access Control for Register Interface情報

タイトルi-DRIVE Dashcam i11, i12 Improper Access Control for Register Interface
説明Managing Settings to Obtain Sensitive Data and Sabotaging Car Battery - An attacker can remotely access and read the dashcam’s settings and configuration, exposing sensitive car and driver information. Additionally, they can manipulate device settings, such as lowering the volume to mask remote activity. Spoofing the MAC address of the paired device, an attacker can disable battery protection, potentially draining the vehicle's battery when parked. Further actions include deleting recorded footage, discreetly disabling recording, or performing a factory reset, effectively erasing critical evidence.
ソース⚠️ https://github.com/geo-chen/i-Drive
ユーザー
 geochen (UID 78995)
送信2025年02月27日 17:01 (1 年 ago)
モデレーション2025年03月03日 13:25 (4 days later)
ステータス承諾済み
VulDBエントリ298196 [i-Drive i11/i12 迄 20250227 Device Setting リモートコード実行]
ポイント20

Might our Artificial Intelligence support you?

Check our Alexa App!