70mai Dashcam M300 Improper Access Control Vulnerability

A vulnerability exists in the 70mai Dashcam M300 in versions prior to 20250611, specifically within the web server component. This vulnerability involves improper access controls, allowing local network attackers to exploit the issue. The attack's complexity is high, and while the vulnerability has been publicly disclosed and a proof-of-concept exploit is available, it requires overcoming significant technical challenges.

Impact

Exploitation of this vulnerability allows for unauthorized access to sensitive video and audio recordings stored on the dashcam's SD card. This access is gained through the dashcam's telnet session, available as the root user.

Reproduction

To reproduce this vulnerability, connect to the dashcam's network using default telnet credentials. Once connected, the dashcam's web server can be accessed, where directory listing is disabled for video recordings. However, through the open telnet port, a full list of sensitive video recordings can be obtained and dumped.

Remediation

It is recommended to firewall the device to block unauthorized access.