An exploitable firmware update vulnerability exists in the NT9665X Chipset firmware, running on Anker Roav A1 Dashcam version RoavA1SWV1.9. The HTTP server allows for arbitrary firmware binaries to be uploaded which will be flashed upon next reboot. An attacker can send an HTTP PUT request or upgrade firmware request to trigger this vulnerability.
oryginał ENCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HAnker In Roav Dashcam A1
HWAnker-Inwszystkie wersjeAnker In Roav Dashcam A1 Firmware
OSAnker-In1.9
Powiązane podatności
An exploitable code execution vulnerability exists in Wi-Fi Command 9999 of the Roav A1 Dashcam running versio...
An exploitable code execution vulnerability exists in the XML_UploadFile Wi-Fi command of the NT9665X Chipset ...
An exploitable code execution vulnerability exists in the HTTP request-parsing function of the NT9665X Chipset...
An exploitable firmware update vulnerability exists in the NT9665X Chipset firmware running on the Anker Roav ...
An exploitable denial-of-service vulnerability exists in the thumbnail display functionality of the NT9665X Ch...