Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered on IROAD Dashcam FX2 devices. Dumping Files Over HTTP and RTSP Without Authentication can occur. It lacks authentication controls on its HTTP and RTSP interfaces, allowing attackers to retrieve sensitive files and video recordings. By connecting to http://192.168.10.1/mnt/extsd/event/, an attacker can download all stored video recordings in an unencrypted manner. Additionally, the RTSP stream on port 8554 is accessible without authentication, allowing an attacker to view live footage.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IROAD Dashcam FX2 安全漏洞
Vulnerability Description
IROAD Dashcam FX2是韩国IROAD公司的一款行车记录仪。 IROAD Dashcam FX2存在安全漏洞,该漏洞源于HTTP和RTSP接口缺少身份验证控制,可能导致攻击者获取敏感文件和视频记录。
CVSS Information
N/A
Vulnerability Type
N/A