CVE-2023-27748
9.8CRITICALBlackVue DR750-2CH LTE v.1.012_2022.10.26 does not employ authenticity check for uploaded firmware. This can allow attackers to upload crafted firmware which contains backdoors and enables arbitrary c
Publicado: 4/13/2023Actualizado: 2/7/2025
Descripción
BlackVue DR750-2CH LTE v.1.012_2022.10.26 does not employ authenticity check for uploaded firmware. This can allow attackers to upload crafted firmware which contains backdoors and enables arbitrary code execution.
Análisis IAImpulsado por IA
Productos Afectados
blackvuedr750-2ch_lte_firmware
1.012_2022.10.26
blackvuedr750-2ch_lte
-
blackvuedr750-2ch_ir_lte_firmware
1.012_2022.10.26
blackvuedr750-2ch_ir_lte
-
Referencias
- https://blackvue.comProduct
- https://github.com/eyJhb/blackvue-cve-2022ExploitThird Party Advisory
- https://github.com/eyJhb/blackvue-cve-2023ExploitThird Party Advisory
- https://shop.blackvue.com/product/dr750-2ch-ir-lte/Product
- https://blackvue.comProduct
- https://github.com/eyJhb/blackvue-cve-2022ExploitThird Party Advisory
- https://github.com/eyJhb/blackvue-cve-2023ExploitThird Party Advisory
- https://shop.blackvue.com/product/dr750-2ch-ir-lte/Product