| 제목 | 70mai Dashcam X200 Omni Improper Initialization |
|---|
| 설명 | Init Script Binary Hijack Persistence Vulnerability in 70mai X200 Omni Dashcam
Description: The 70mai X200 Omni dashcam is vulnerable to a persistence attack where an init script calls a missing binary, allowing an attacker to place a malicious binary at that path. This binary executes automatically at boot, enabling persistent code execution. This aligns with MITRE ATT&CK techniques T1037.004 (RC Scripts persistence) and T1554 (Hijack Execution Flow via binary replacement). The flaw allows stealthy, persistent control over the device, compromising its integrity and security. Proper binary validation and script hardening are essential to mitigate this risk.
Vulnerability Type: Incorrect Access Control / Persistence via Binary Hijacking
Affected Component: Initialization Script
Attack Type: Local
Impact Code execution: True
Impact Information Disclosure: True
Attack Vectors: An attacker with access to the device’s network or filesystem can place a malicious binary at a path referenced by the boot initialization script (which normally points to a missing binary). This causes the malicious binary to run automatically on device boot, achieving persistent code execution and potentially exposing sensitive information or system control.
|
|---|
| 원천 | ⚠️ https://github.com/geo-chen/70mai/blob/main/README.md#finding-11-init-script-binary-hijack-persistence-vulnerability-in-70mai-x200-omni-dashcam |
|---|
| 사용자 | geochen (UID 78995) |
|---|
| 제출 | 2025. 10. 19. PM 06:30 (8 개월 ago) |
|---|
| 모더레이션 | 2025. 11. 08. AM 08:22 (20 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 331633 [70mai X200 까지 20251019 Init Script 권한 상승] |
|---|
| 포인트들 | 20 |
|---|