Flock Safety Falcon and Sparrow License Plate Readers Development Wi-Fi Credentials Hardcoded in Production Firmware
Vulnerability
A vulnerability exists in Flock Safety Falcon and Sparrow License Plate Readers running version OPM1.171019.026. These devices are shipped with development Wi-Fi credentials, specifically 'test_flck', stored in cleartext within the production firmware. This issue could potentially allow the device to automatically connect to a malicious Wi-Fi network, known as an evil twin, if the wireless interface is activated.
Impact
The presence of hardcoded Wi-Fi credentials in the production firmware could lead to unauthorized network access, allowing interception of data or manipulation of device functions. In this case, it was noted that the device could connect to an evil twin network, which could be exploited.
Reproduction
The vulnerability can be reproduced by examining the device's firmware, where the cleartext Wi-Fi credentials can be found. Once the 'test_flck' credentials are extracted, they can be used to connect to the device's Wi-Fi network, taking advantage of the default hotspot password 'security'. After connecting, an attacker can access the device's administrative API endpoints, which are exposed without authentication.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.