Lucene search
HistoryApr 13, 2023 - 8:15 p.m.
CVE-2023-27746
cve-2023-27746
blackvue
default passphrase
vulnerability
wpa2
brute force attack
interception
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
9.5
Confidence
High
EPSS
0.001
Percentile
46.8%
BlackVue DR750-2CH LTE v.1.012_2022.10.26 was discovered to contain a weak default passphrase which can be easily cracked via a brute force attack if the WPA2 handshake is intercepted.
Affected configurations
Node
blackvuedr750-2ch_lteMatch-
blackvuedr750-2ch_lte_firmwareMatch1.012_2022.10.26
Node
blackvuedr750-2ch_ir_lteMatch-
blackvuedr750-2ch_ir_lte_firmwareMatch1.012_2022.10.26
| Vendor | Product | Version | CPE |
|---|---|---|---|
| blackvue | dr750-2ch_lte | - | cpe:2.3:h:blackvue:dr750-2ch_lte:-:*:*:*:*:*:*:* |
| blackvue | dr750-2ch_lte_firmware | 1.012_2022.10.26 | cpe:2.3:o:blackvue:dr750-2ch_lte_firmware:1.012_2022.10.26:*:*:*:*:*:*:* |
| blackvue | dr750-2ch_ir_lte | - | cpe:2.3:h:blackvue:dr750-2ch_ir_lte:-:*:*:*:*:*:*:* |
| blackvue | dr750-2ch_ir_lte_firmware | 1.012_2022.10.26 | cpe:2.3:o:blackvue:dr750-2ch_ir_lte_firmware:1.012_2022.10.26:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2023-27746
2023-04-13 00:00:00
prion
prion
Default credentials
2023-04-13 20:15:00
cve
cve
CVE-2023-27746
2023-04-13 20:15:15
githubexploit
githubexploit
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
9.5
Confidence
High
EPSS
0.001
Percentile
46.8%
Related for NVD:CVE-2023-27746