CPE-9A48BECC-D0B7-423C-BCC7-31A8E549BBD4 Detail

CPE Details

DBPOWER U818a Firmware

Vendor

dbpower

Product

u818a_firmware

Version

Created

2018-09-26
12h30 +00:00

Modified

2021-06-17
14h14 +00:00

Official links

CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Notifications manage

List of Notifications

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

CPE ID

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CPE Name: cpe:2.3:o:dbpower:u818a_firmware:-:::::::*

Informations

Vendor

dbpower

Product

u818a_firmware

Version

Related CVE

Open and find in CVE List

CVE ID	Published	Description	Score	Severity
CVE-2017-3209	2018-07-24 13h00 +00:00	The DBPOWER U818A WIFI quadcopter drone provides FTP access over its own local access point, and allows full file permissions to the anonymous user. The DBPower U818A WIFI quadcopter drone runs an FTP server that by default allows anonymous access without a password, and provides full filesystem read/write permissions to the anonymous user. A remote user within range of the open access point on the drone may utilize the anonymous user of the FTP server to read arbitrary files, such as images and video recorded by the device, or to replace system files such as /etc/shadow to gain further access to the device. Furthermore, the DBPOWER U818A WIFI quadcopter drone uses BusyBox 1.20.2, which was released in 2012, and may be vulnerable to other known BusyBox vulnerabilities.	8.1	High

DBPOWER U818a Firmware

CPE Details

CPE Name: cpe:2.3:o:dbpower:u818a_firmware:-:*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:o:dbpower:u818a_firmware:-:::::::*