Submeter #510951: i-DRIVE Dashcam i11, i12 Authentication Bypass by Primary Weaknessinformação

Títuloi-DRIVE Dashcam i11, i12 Authentication Bypass by Primary Weakness
DescriçãoBypassing of device pairing - The dashcam's authentication mechanism relies on a default password combined with a second factor (device registration). However, the device pairing process is based on MAC address recognition, which can be bypassed. An attacker can obtain the MAC address of a paired device through methods such as ARP scanning, spoof the MAC address, and successfully connect to the dashcam without completing the pairing process. This grants unauthorized access to the device’s network.
Fonte⚠️ https://github.com/geo-chen/i-Drive
Utilizador
 geochen (UID 78995)
Submissão27/02/2025 16h57 (há 1 Ano)
Moderação03/03/2025 13h25 (4 days later)
EstadoAceite
Entrada VulDB298194 [i-Drive i11/i12 até 20250227 Device Pairing Autenticação fraca]
Pontos20

Want to stay up to date on a daily basis?

Enable the mail alert feature now!