How severe is CVE-2023-27748?

CVE-2023-27748 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2023-27748

9.8CRITICAL

BlackVue DR750-2CH LTE v.1.012_2022.10.26 does not employ authenticity check for uploaded firmware. This can allow attackers to upload crafted firmware which contains backdoors and enables arbitrary c

发布于: 4/13/2023更新于: 2/7/2025

描述

BlackVue DR750-2CH LTE v.1.012_2022.10.26 does not employ authenticity check for uploaded firmware. This can allow attackers to upload crafted firmware which contains backdoors and enables arbitrary code execution.

AI分析AI驱动

受影响产品

blackvuedr750-2ch_lte_firmware

1.012_2022.10.26

blackvuedr750-2ch_lte

blackvuedr750-2ch_ir_lte_firmware

1.012_2022.10.26

blackvuedr750-2ch_ir_lte

参考资料

https://blackvue.com
Product
https://github.com/eyJhb/blackvue-cve-2022
ExploitThird Party Advisory
https://github.com/eyJhb/blackvue-cve-2023
ExploitThird Party Advisory
https://shop.blackvue.com/product/dr750-2ch-ir-lte/
Product
https://blackvue.com
Product
https://github.com/eyJhb/blackvue-cve-2022
ExploitThird Party Advisory
https://github.com/eyJhb/blackvue-cve-2023
ExploitThird Party Advisory
https://shop.blackvue.com/product/dr750-2ch-ir-lte/
Product