Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

NVD
NVDadded 2022/12/06 12:15 a.m.8 views

CVE-2022-40918

Buffer overflow in firmware leweicam binary version 2.0.10 in Force 1 Discovery Wifi U818A HD+ FPV Drone allows attacker to gain remote code execution as root user via a specially crafted UDP packet. Please update the Reference section to these links http://thiscomputer.com/...

9.8CVSS0.04349EPSS
Exploits1References2
Prion
Prionadded 2018/07/24 3:29 p.m.21 views

Design/Logic Flaw

The DBPOWER U818A WIFI quadcopter drone provides FTP access over its own local access point, and allows full file permissions to the anonymous user. The DBPower U818A WIFI quadcopter drone runs an FTP server that by default allows anonymous access without a password, and provides full filesystem...

4.8CVSS8.1AI score0.00688EPSS
Exploits0References3
NVD
NVDadded 2018/07/24 3:29 p.m.16 views

CVE-2017-3209

The DBPOWER U818A WIFI quadcopter drone provides FTP access over its own local access point, and allows full file permissions to the anonymous user. The DBPower U818A WIFI quadcopter drone runs an FTP server that by default allows anonymous access without a password, and provides full filesystem...

8.1CVSS8.2AI score0.00688EPSS
Exploits0References3
Cvelist
Cvelistadded 2018/07/24 3:0 p.m.11 views

CVE-2017-3209 The DBPOWER U818A WIFI quadcopter drone provides FTP access over its own local access point, and allows full file permissions to the anonymous user

The DBPOWER U818A WIFI quadcopter drone provides FTP access over its own local access point, and allows full file permissions to the anonymous user. The DBPower U818A WIFI quadcopter drone runs an FTP server that by default allows anonymous access without a password, and provides full filesystem...

8.2AI score0.00688EPSS
Exploits0References3
CVE
CVEadded 2018/07/24 3:0 p.m.69 views

CVE-2017-3209

The CVE-2017-3209 entry concerns the DBPOWER U818A WIFI quadcopter drone, which runs an FTP server on its local AP that by default allows anonymous access with full filesystem permissions. The anonymous user can read arbitrary files (e.g., images/videos) and even replace system files such as /etc...

8.1CVSS8.2AI score0.00688EPSS
Exploits0References3Affected Software1
ThreatPost
ThreatPostadded 2017/08/29 9:41 a.m.8 views

DJI Launches Drone Bug Bounty Program

The lack of security in commercial drones has been well documented, but one Chinese manufacturer is working to fix that by incentivizing researchers who can poke holes in the software its drones run on. One of the largest unmanned aerial vehicle manufacturers, Dà-Jiāng Innovations Science and...

7.2AI score
Exploits0References3
CERT
CERTadded 2017/04/11 12:0 a.m.87 views

DBPOWER U818A WIFI quadcopter drone allows full filesystem permissions to anonymous FTP

Overview The DBPOWER U818A WIFI quadcopter drone provides FTP access over its own local access point, and allows full file permissions to the anonymous user. Description The DBPOWER U8181A WIFI quadcopter drone is designed to record images and video from the air. The drone provides an undocumente...

8.1CVSS8.2AI score0.00688EPSS
Exploits0References2
Rows per page
Query Builder