CVE-2023-27748
9.8CRITICALBlackVue DR750-2CH LTE v.1.012_2022.10.26 does not employ authenticity check for uploaded firmware. This can allow attackers to upload crafted firmware which contains backdoors and enables arbitrary c
Published: 4/13/2023Updated: 2/7/2025
Description
BlackVue DR750-2CH LTE v.1.012_2022.10.26 does not employ authenticity check for uploaded firmware. This can allow attackers to upload crafted firmware which contains backdoors and enables arbitrary code execution.
AI AnalysisPowered by AI
Affected Products
blackvuedr750-2ch_lte_firmware
1.012_2022.10.26
blackvuedr750-2ch_lte
-
blackvuedr750-2ch_ir_lte_firmware
1.012_2022.10.26
blackvuedr750-2ch_ir_lte
-
References
- https://blackvue.comProduct
- https://github.com/eyJhb/blackvue-cve-2022ExploitThird Party Advisory
- https://github.com/eyJhb/blackvue-cve-2023ExploitThird Party Advisory
- https://shop.blackvue.com/product/dr750-2ch-ir-lte/Product
- https://blackvue.comProduct
- https://github.com/eyJhb/blackvue-cve-2022ExploitThird Party Advisory
- https://github.com/eyJhb/blackvue-cve-2023ExploitThird Party Advisory
- https://shop.blackvue.com/product/dr750-2ch-ir-lte/Product