HIGH🇬🇧 English

CVE-2018-4028

CVSS 7.5v3.1pub. 2019-05-13upd. 2024-11-21

An exploitable firmware update vulnerability exists in the NT9665X Chipset firmware running on the Anker Roav A1 Dashcam, version RoavA1SWV1.9. The HTTP server could allow an attacker to overwrite the root directory of the server, resulting in a denial of service. An attacker can send an HTTP POST request to trigger this vulnerability.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  • Anker In Roav Dashcam A1

    HW
    Anker-In
    wszystkie wersje
  • Anker In Roav Dashcam A1 Firmware

    OS
    Anker-In
    1.9
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
DoS
CWE
Referencje

Powiązane podatności

CVE-2018-4014CRITICAL9.8ten sam produkt

An exploitable code execution vulnerability exists in Wi-Fi Command 9999 of the Roav A1 Dashcam running versio...

CVE-2018-4018CRITICAL9.8ten sam produkt

An exploitable firmware update vulnerability exists in the NT9665X Chipset firmware, running on Anker Roav A1 ...

CVE-2018-4023CRITICAL9.8ten sam produkt

An exploitable code execution vulnerability exists in the XML_UploadFile Wi-Fi command of the NT9665X Chipset ...

CVE-2018-4029CRITICAL9.8ten sam produkt

An exploitable code execution vulnerability exists in the HTTP request-parsing function of the NT9665X Chipset...

CVE-2018-4027HIGH7.5ten sam produkt

An exploitable denial-of-service vulnerability exists in the XML_UploadFile Wi-Fi command of the NT9665X Chips...