i-Drive Dashcams Access Control Vulnerability in Device Setting Handler

A critical vulnerability has been identified in i-Drive dashcam models i11 and i12, affecting firmware versions prior to 20250227. The issue arises from improper access control in the Device Setting Handler component, allowing unauthorized management of device settings. This vulnerability can be exploited remotely within the local network, although the attack's complexity is high and exploitation is known to be difficult.

Impact

Exploitation of this vulnerability allows for unauthorized access to the dashcam's settings and configuration, exposing sensitive information about the car and driver. Additionally, it enables manipulation of device settings, such as disabling battery protection, which can drain the vehicle's battery when parked. The vulnerability also allows for deletion of recorded footage, disruption of the recording function, or a factory reset, erasing important evidence.

Reproduction

To reproduce this vulnerability, connect to the dashcam's Wi-Fi network. Once connected, send a crafted command to the Device Setting Handler interface. The default password for accessing the settings is 'adim' plus '000*'. After gaining access, the dashcam's settings can be managed, including options that affect the device's battery protection.