11 matches found
EUVD-2023-59146
Malicious code in bioql PyPI...
EUVD-2023-59145
Malicious code in bioql PyPI...
The vulnerability of the HTTP service of DJI Mavic Mini 3 Pro microprogramming software allows a intruder to gain unauthorized access to protected information.
The vulnerability of the HTTP service in DJI Mavic Mini 3 Pro microprogrammed software systems is related to the absence of authentication for critical functions. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected information...
CVE-2023-6949
A Missing Authentication for Critical Function issue affecting the HTTP service running on the DJI Mavic Mini 3 Pro on the standard port 80 could allow an attacker to enumerate and download videos and pictures saved on the drone internal or external memory without requiring any kind of...
CVE-2023-6950
An Improper Input Validation vulnerability affecting the FTP service running on the DJI Mavic Mini 3 Pro could allow an attacker to craft a malicious packet containing a malformed path provided to the FTP SIZE command that leads to a denial-of-service attack of the FTP service itself...
CVE-2023-6950
An Improper Input Validation vulnerability affecting the FTP service running on the DJI Mavic Mini 3 Pro could allow an attacker to craft a malicious packet containing a malformed path provided to the FTP SIZE command that leads to a denial-of-service attack of the FTP service itself...
CVE-2023-6949
A Missing Authentication for Critical Function issue affecting the HTTP service running on the DJI Mavic Mini 3 Pro on the standard port 80 could allow an attacker to enumerate and download videos and pictures saved on the drone internal or external memory without requiring any kind of...
CVE-2023-6949
A Missing Authentication for Critical Function issue affecting the HTTP service running on the DJI Mavic Mini 3 Pro on the standard port 80 could allow an attacker to enumerate and download videos and pictures saved on the drone internal or external memory without requiring any kind of...
CVE-2023-6949
CVE-2023-6949 affects the HTTP service on DJI Mavic Mini 3 Pro. A Missing Authentication for Critical Function vulnerability on port 80 allows an attacker to enumerate and download videos and pictures stored in drone memory without authentication. Connected sources corroborate the issue and ident...
PT-2024-2603 · Dji · Dji Mavic Mini 3 Pro
Name of the Vulnerable Software and Affected Versions: DJI Mavic Mini 3 Pro affected versions not specified Description: The issue is related to an Improper Input Validation vulnerability in the FTP service. It could allow an attacker to craft a malicious packet with a malformed path provided to...
PT-2024-2606 · Dji · Dji Mavic Mini 3 Pro
Name of the Vulnerable Software and Affected Versions: DJI Mavic Mini 3 Pro affected versions not specified Description: A Missing Authentication for Critical Function issue affects the HTTP service running on the standard port 80, allowing an attacker to enumerate and download videos and picture...