提交 #510955: i-DRIVE Dashcam i11, i12 Improper Access Control for Register Interface信息

标题i-DRIVE Dashcam i11, i12 Improper Access Control for Register Interface
描述Managing Settings to Obtain Sensitive Data and Sabotaging Car Battery - An attacker can remotely access and read the dashcam’s settings and configuration, exposing sensitive car and driver information. Additionally, they can manipulate device settings, such as lowering the volume to mask remote activity. Spoofing the MAC address of the paired device, an attacker can disable battery protection, potentially draining the vehicle's battery when parked. Further actions include deleting recorded footage, discreetly disabling recording, or performing a factory reset, effectively erasing critical evidence.
来源⚠️ https://github.com/geo-chen/i-Drive
用户
 geochen (UID 78995)
提交2025-02-27 17時01分 (1 年前)
管理2025-03-03 13時25分 (4 days later)
状态已接受
VulDB条目298196 [i-Drive i11/i12 直到 20250227 Device Setting 远程代码执行]
积分20

Do you want to use VulDB in your project?

Use the official API to access entries easily!