PT-2019-10754 · Anker · Roav A1 Dashcam

Published

2019-05-13

Updated

2022-06-07

CVE-2018-4017

CVSS v3.1

8.8

High

Vector

AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Roav A1 Dashcam version RoavA1SWV1.9

Description A vulnerability exists in the Wi-Fi Access Point feature, where a set of default credentials can potentially be used to connect to the device. An attacker can connect to the AP to trigger this issue.

Recommendations For Roav A1 Dashcam version RoavA1SWV1.9, consider changing the default credentials to prevent unauthorized access. As a temporary workaround, restrict access to the Wi-Fi Access Point feature until a patch is available.

Fix

Using Hardcoded Credentials

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-798

Related Identifiers

CVE-2018-4017

Affected Products

Roav A1 Dashcam

PT-2019-10754 · Anker · Roav A1 Dashcam

CVE-2018-4017

Weakness Enumeration

Related Identifiers

Affected Products

References · 3