Lucene search
PRIOn knowledge basePRION:CVE-2018-4018HistoryMay 13, 2019 - 4:29 p.m.
Design/Logic Flaw
2019-05-1316:29:00
PRIOn knowledge base
www.prio-n.com
7
An exploitable firmware update vulnerability exists in the NT9665X Chipset firmware, running on Anker Roav A1 Dashcam version RoavA1SWV1.9. The HTTP server allows for arbitrary firmware binaries to be uploaded which will be flashed upon next reboot. An attacker can send an HTTP PUT request or upgrade firmware request to trigger this vulnerability.
| CPE | Name | Operator | Version |
|---|---|---|---|
| roav_dashcam_a1_firmware | eq | 1.9 |
Related
cve
cve
CVE-2018-4018
2019-05-13 16:29:00
cvelist
cvelist
CVE-2018-4018
2019-05-13 15:40:29
nvd
nvd
CVE-2018-4018
2019-05-13 16:29:00
talos
talos
Novatek NT9665X HTTP Upload Firmware Update Vulnerability
2019-05-13 00:00:00
talosblog
talosblog
Vulnerability Spotlight: Multiple vulnerabilities in the Roav A1 Dashcam
2019-05-13 07:04:35