제출 #510952: i-DRIVE Dashcam i11, i12 Improper Access Controls정보

제목i-DRIVE Dashcam i11, i12 Improper Access Controls
설명Remotely Dump Video Footage and Live Video Stream - An attacker with network access can remotely enumerate all video recordings stored on the dashcam’s SD card via port 9091. These recordings can then be converted from JDR to MP4 format. Additionally, by opening a secondary socket to port 9092 and successfully validating the challenge-response key, an attacker can stream live footage. Extracted recordings may contain sensitive information, including location data.
원천⚠️ https://github.com/geo-chen/i-Drive
사용자
 geochen (UID 78995)
제출2025. 02. 27. PM 04:58 (1 년도 ago)
모더레이션2025. 03. 03. PM 01:25 (4 days later)
상태수락
VulDB 항목298195 [i-Drive i11/i12 까지 20250227 Video Footage/Live Video Stream 권한 상승]
포인트들20

Want to know what is going to be exploited?

We predict KEV entries!