ГлавнаяУязвимости → CVE-2024-52876
7.5высокая

CVE-2024-52876

Описание

Holy Stone Remote ID Module HSRID01, firmware distributed with the Drone Go2 mobile application before 1.1.8, allows unauthenticated "remote power off" actions (in broadcast mode) via multiple read operations on the ASTM Remote ID (0xFFFA) GATT.

CVSS
Балл7.5 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Источники
https://coalfire.com/the-coalfire-blog/holy-stone-remote-id-vulnerability-disclosure