Vulnerability Description
BlackVue DR750-2CH LTE v.1.012_2022.10.26 does not employ authentication in its web server. This vulnerability allows attackers to access sensitive information such as configurations and recordings.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Blackvue | Dr750-2Ch Lte Firmware | 1.012_2022.10.26 |
| Blackvue | Dr750-2Ch Lte | - |
| Blackvue | Dr750-2Ch Ir Lte Firmware | 1.012_2022.10.26 |
| Blackvue | Dr750-2Ch Ir Lte | - |
Related Weaknesses (CWE)
References
- https://blackvue.comProduct
- https://github.com/eyJhb/blackvue-cve-2022ExploitThird Party Advisory
- https://github.com/eyJhb/blackvue-cve-2023ExploitThird Party Advisory
- https://shop.blackvue.com/product/dr750-2ch-ir-lte/Product
- https://blackvue.comProduct
- https://github.com/eyJhb/blackvue-cve-2022ExploitThird Party Advisory
- https://github.com/eyJhb/blackvue-cve-2023ExploitThird Party Advisory
- https://shop.blackvue.com/product/dr750-2ch-ir-lte/Product
FAQ
What is CVE-2023-27747?
CVE-2023-27747 is a vulnerability with a CVSS score of 7.5 (HIGH). BlackVue DR750-2CH LTE v.1.012_2022.10.26 does not employ authentication in its web server. This vulnerability allows attackers to access sensitive information such as configurations and recordings.
How severe is CVE-2023-27747?
CVE-2023-27747 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-27747?
Check the references section above for vendor advisories and patch information. Affected products include: Blackvue Dr750-2Ch Lte Firmware, Blackvue Dr750-2Ch Lte, Blackvue Dr750-2Ch Ir Lte Firmware, Blackvue Dr750-2Ch Ir Lte.