| 제목 | Marbella Dashcam KR8S, KRX Use of Default Credentials |
|---|
| 설명 | Same default credentials and limited password combinations
All dashcams were shipped with the same default credentials of 12345678 which creates a "insecure-by-default" setup. For users who change their passwords, it's limited to 8 characters. According to https://www.protiviti.com/sg-en/blogs/6259-8-character-password-still-dead, a 8-char password takes a maximum of 8 hours to be cracked on an AWS box. |
|---|
| 원천 | ⚠️ https://github.com/geo-chen/Marbella#finding-1-same-default-credentials-and-limited-password-combinations |
|---|
| 사용자 | geochen (UID 78995) |
|---|
| 제출 | 2025. 03. 16. AM 02:00 (1 년도 ago) |
|---|
| 모더레이션 | 2025. 03. 20. PM 11:49 (5 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 300539 [Marbela Dashcam KR8S/Dashcam KRX 원격 코드 실행] |
|---|
| 포인트들 | 19 |
|---|