CVE-2018-4023

Summary

An exploitable code execution vulnerability exists in the XML_UploadFile Wi-Fi command of the NT9665X Chipset firmware, running on the Anker Roav A1 Dashcam, version RoavA1SWV1.9. A specially crafted packet can cause a stack-based buffer overflow, resulting in code execution.

Affected Software

VendorProductVersion RangeStatus
n/aNovatekAnker Roav A1 Dashcam RoavA1SWV1.9affected

Weaknesses

  • Stack-based Buffer Overflow

ADP Enrichment

CVE Program Container

Additional References

References