PT-2019-10754 · Anker · Roav A1 Dashcam
Publicado
2019-05-13
·
Atualizado
2022-06-07
·
CVE-2018-4017
CVSS v3.1
8.8
Alta
| Vetor | AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Roav A1 Dashcam version RoavA1SWV1.9
Description
A vulnerability exists in the Wi-Fi Access Point feature, where a set of default credentials can potentially be used to connect to the device. An attacker can connect to the AP to trigger this issue.
Recommendations
For Roav A1 Dashcam version RoavA1SWV1.9, consider changing the default credentials to prevent unauthorized access. As a temporary workaround, restrict access to the Wi-Fi Access Point feature until a patch is available.
Correção
Using Hardcoded Credentials
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Roav A1 Dashcam