CVE-2018-4025

Name of the Vulnerable Software and Affected Versions Anker Roav A1 Dashcam version RoavA1SWV1.9

Description A denial-of-service issue exists in the XML GetRawEncJpg Wi-Fi command of the NT9665X Chipset firmware. It can be exploited by sending a specially crafted packet, which causes an invalid memory dereference and results in a device reboot.

Recommendations For version RoavA1SWV1.9, as a temporary workaround, consider disabling the XML GetRawEncJpg Wi-Fi command until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.