eyJhb

3 exploits Active since Apr 2023
CVE-2023-27746 NOMISEC CRITICAL WORKING POC
Blackvue Dr750-2ch Lte Firmware - Brute Force
BlackVue DR750-2CH LTE v.1.012_2022.10.26 was discovered to contain a weak default passphrase which can be easily cracked via a brute force attack if the WPA2 handshake is intercepted.
10 stars
CVSS 9.8
CVE-2023-27747 WRITEUP HIGH WORKING POC
Blackvue Dr750-2ch Lte Firmware - Missing Authentication
BlackVue DR750-2CH LTE v.1.012_2022.10.26 does not employ authentication in its web server. This vulnerability allows attackers to access sensitive information such as configurations and recordings.
CVSS 7.5
CVE-2023-27748 WRITEUP CRITICAL WORKING POC
Blackvue Dr750-2ch Lte Firmware - Data Authenticity Bypass
BlackVue DR750-2CH LTE v.1.012_2022.10.26 does not employ authenticity check for uploaded firmware. This can allow attackers to upload crafted firmware which contains backdoors and enables arbitrary code execution.
CVSS 9.8