Lucene search
Mv720 Firmware Security Vulnerabilities - CVSS Score 9 - 10
cve
The MiCODUS MV720 GPS tracker API server has an authentication mechanism that allows devices to use a hard-coded master password. This may allow an attacker to send SMS commands directly to the GPS tracker as if they were coming from the GPS ownerβs mobile number.
9.8CVSS
9.6AI Score
0.002EPSS
2022-07-20 04:15 PM
2371
2
cve
SMS-based GPS commands can be executed by MiCODUS MV720 GPS tracker without authentication.
9.8CVSS
9.5AI Score
0.002EPSS
2022-07-20 04:15 PM
51
2