SIFUSM/MZZYG BD S1 Improper Access Control Vulnerability in RTSP Live Video Stream Endpoint
Vulnerability
A vulnerability exists in the SIFUSM/MZZYG BD S1 dashcam model, in versions through 20250611. This vulnerability allows unauthorized access to the RTSP live video stream endpoint, enabling attackers to view live feeds and download video recordings without authentication. The issue arises from improper access controls, and exploitation requires access to the local network.
Impact
Exploitation of this vulnerability allows for unauthorized access to live video streams and the ability to download sensitive video recordings from the dashcam.
Reproduction
To reproduce this vulnerability, connect to the same local network as the affected dashcam. Once connected, send API calls to the dashcam to register the client, start the live stream, set the work mode, and fetch the file list of recorded videos. After obtaining the file names, all video recordings can be downloaded via the RTSP protocol, using the dashcam's IP address and the corresponding file name.
Remediation
It is recommended to implement proper firewall rules to block unauthorized access to the dashcam's RTSP stream.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.