Lucene search
K

11 matches found

RedhatCVE
RedhatCVE
added 2025/06/14 8:17 p.m.5 views

CVE-2025-5484

A username and password are required to authenticate to the central SinoTrack device management interface. The username for all devices is an identifier printed on the receiver. The default password is well-known and common to all devices. Modification of the default password is not enforced duri...

8.3CVSS8.4AI score0.00415EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/12 8:5 p.m.6 views

CVE-2025-5485 SinoTrack GPS Receiver Weak Authentication

User names used to access the web management interface are limited to the device identifier, which is a numerical identifier no more than 10 digits. A malicious actor can enumerate potential targets by incrementing or decrementing from known identifiers or through enumerating random digit sequenc...

8.8CVSS8.6AI score0.00393EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/06/12 8:5 p.m.13 views

CVE-2025-5485 SinoTrack GPS Receiver Weak Authentication

User names used to access the web management interface are limited to the device identifier, which is a numerical identifier no more than 10 digits. A malicious actor can enumerate potential targets by incrementing or decrementing from known identifiers or through enumerating random digit sequenc...

8.8CVSS0.00393EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/06/12 8:3 p.m.15 views

CVE-2025-5484 SinoTrack GPS Receiver Weak Authentication

A username and password are required to authenticate to the central SinoTrack device management interface. The username for all devices is an identifier printed on the receiver. The default password is well-known and common to all devices. Modification of the default password is not enforced duri...

8.3CVSS0.00415EPSS
Exploits0References2
CVE
CVE
added 2025/06/12 8:3 p.m.68 views

CVE-2025-5484

CVE-2025-5484 (SinoTrack GPS Receiver) affects SinoTrack devices with a central device management interface. The root cause is weak authentication: the username is the device identifier printed on the receiver and the default password is well-known and not enforced to be changed during setup. Thi...

8.3CVSS8.4AI score0.00415EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/06/12 8:3 p.m.4 views

CVE-2025-5484 SinoTrack GPS Receiver Weak Authentication

A username and password are required to authenticate to the central SinoTrack device management interface. The username for all devices is an identifier printed on the receiver. The default password is well-known and common to all devices. Modification of the default password is not enforced duri...

8.3CVSS8.4AI score0.00415EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/06/12 12:0 a.m.4 views

SinoTrack IOT PC Platform 安全漏洞

SinoTrack IOT PC Platform is a location-based system from China-based SinoTrack. A security vulnerability exists in SinoTrack IOT PC Platform that stems from the default password not being forced to be changed, which could lead to a malicious actor obtaining a device identifier...

8.3CVSS6.9AI score0.00415EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/06/12 12:0 a.m.2 views

SinoTrack IOT PC Platform 安全漏洞

SinoTrack IOT PC Platform is a location-based system from SinoTrack, a Chinese company. A security vulnerability exists in SinoTrack IOT PC Platform that stems from a username restriction to a device identifier, which could lead malicious actors to enumerate potential targets...

8.8CVSS6.8AI score0.00393EPSS
Exploits0References3
HackRead
HackRead
added 2025/06/11 9:10 p.m.12 views

CISA Warns of Remote Control Flaws in SinoTrack GPS Trackers

The US CISA reports critical vulnerabilities in SinoTrack GPS devices that could let attackers remotely control vehicles and track locations. Discover the vulnerabilities and essential steps to secure your device...

7.5AI score
Exploits0
The Hacker News
The Hacker News
added 2025/06/11 10:28 a.m.23 views

SinoTrack GPS Devices Vulnerable to Remote Vehicle Control via Default Passwords

Two security vulnerabilities have been disclosed in SinoTrack GPS devices that could be exploited to control certain remote functions on connected vehicles and even track their locations. "Successful exploitation of these vulnerabilities could allow an attacker to access device profiles without...

7.9AI score0.00415EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/06/11 12:0 a.m.5 views

PT-2025-25200 · Sinotrack · Sinotrack Devices

Name of the Vulnerable Software and Affected Versions: SinoTrack devices affected versions not specified Description: The issue concerns a default password that is well-known and common to all SinoTrack devices, which can be used to authenticate to the central device management interface. A...

8.3CVSS9.5AI score0.00415EPSS
Exploits0References12
Rows per page
Query Builder