PT-2023-21316 · Blackvue · Blackvue Dr750-2Ch Lte
Eyjhb
·
Published
2023-04-13
·
Updated
2023-04-21
·
CVE-2023-27746
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
BlackVue DR750-2CH LTE version 1.012 2022.10.26
Description
The issue concerns a weak default passphrase that can be easily cracked via a brute force attack if the WPA2 handshake is intercepted. This allows for potential unauthorized access.
Recommendations
For BlackVue DR750-2CH LTE version 1.012 2022.10.26, consider changing the default passphrase to a strong and unique one to prevent brute force attacks. As a temporary workaround, restrict access to the device's network to minimize the risk of exploitation.
Exploit
Fix
Improper Restriction of Excessive Authentication Attempts
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Blackvue Dr750-2Ch Lte