Roav Dashcam A1 Firmware@1.9 Security Vulnerabilities and Issues — Roav Dashcam A1 Firmware@1.9 CVE List

Lucene search

Anker-inRoav Dashcam A1 Firmware1.9

8 matches found

CVE•added 2019/05/13 4:29 p.m.•72 views

CVE-2018-4018

An exploitable firmware update vulnerability exists in the NT9665X Chipset firmware, running on Anker Roav A1 Dashcam version RoavA1SWV1.9. The HTTP server allows for arbitrary firmware binaries to be uploaded which will be flashed upon next reboot. An attacker can send an HTTP PUT request or upgra...

10CVSS9.4AI score0.00426EPSS

CVE•added 2019/05/13 4:29 p.m.•59 views

CVE-2018-4023

An exploitable code execution vulnerability exists in the XML_UploadFile Wi-Fi command of the NT9665X Chipset firmware, running on the Anker Roav A1 Dashcam, version RoavA1SWV1.9. A specially crafted packet can cause a stack-based buffer overflow, resulting in code execution.

10CVSS9.8AI score0.00554EPSS

CVE•added 2019/05/13 4:29 p.m.•44 views

CVE-2018-4027

An exploitable denial-of-service vulnerability exists in the XML_UploadFile Wi-Fi command of the NT9665X Chipset firmware, running on the Anker Roav A1 Dashcam, version RoavA1SWV1.9. A specially crafted packet can cause a semaphore deadlock, which prevents the device from receiving any physical or ...

7.8CVSS7.4AI score0.00177EPSS

CVE•added 2019/05/13 4:29 p.m.•44 views

CVE-2018-4029

An exploitable code execution vulnerability exists in the HTTP request-parsing function of the NT9665X Chipset firmware running on the Anker Roav A1 Dashcam, version RoavA1SWV1.9. A specially crafted packet can cause an unlimited and arbitrary write to memory, resulting in code execution.

10CVSS9.7AI score0.00614EPSS

CVE•added 2019/05/13 4:29 p.m.•43 views

CVE-2018-4025

An exploitable denial-of-service vulnerability exists in the XML_GetRawEncJpg Wi-Fi command of the NT9665X Chipset firmware, running on the Anker Roav A1 Dashcam, version RoavA1SWV1.9. A specially crafted packet can cause an invalid memory dereference, resulting in a device reboot.

7.8CVSS7.5AI score0.00177EPSS

CVE•added 2019/05/13 4:29 p.m.•40 views

CVE-2018-4026

An exploitable denial-of-service vulnerability exists in the XML_GetScreen Wi-Fi command of the NT9665X Chipset firmware, running on the Anker Roav A1 Dashcam, version RoavA1SWV1.9. A specially crafted set of packets can cause an invalid memory dereference, resulting in a device reboot.

7.8CVSS7.5AI score0.00296EPSS

CVE•added 2019/05/13 4:29 p.m.•40 views

CVE-2018-4028

An exploitable firmware update vulnerability exists in the NT9665X Chipset firmware running on the Anker Roav A1 Dashcam, version RoavA1SWV1.9. The HTTP server could allow an attacker to overwrite the root directory of the server, resulting in a denial of service. An attacker can send an HTTP POST ...

7.8CVSS7.4AI score0.00272EPSS

CVE•added 2019/05/13 4:29 p.m.•38 views

CVE-2018-4024

An exploitable denial-of-service vulnerability exists in the thumbnail display functionality of the NT9665X Chipset firmware, running on the Anker Roav A1 Dashcam, version RoavA1SWV1.9. A specially crafted packet can cause a null pointer dereference, resulting in a device reboot.

7.8CVSS7.4AI score0.00177EPSS