BlackVue DR750-2CH LTE v.1.012_2022.10.26 does not employ...
Critical severity
Unreviewed
Published
Apr 13, 2023
to the GitHub Advisory Database
•
Updated Apr 4, 2024
Description
Published by the National Vulnerability Database
Apr 13, 2023
Published to the GitHub Advisory Database
Apr 13, 2023
Last updated
Apr 4, 2024
BlackVue DR750-2CH LTE v.1.012_2022.10.26 does not employ authenticity check for uploaded firmware. This can allow attackers to upload crafted firmware which contains backdoors and enables arbitrary code execution.
References