Login Sign Up

CVE-2023-27747

7.5 HIGH
Authentication Bypass

📋 TL;DR

BlackVue DR750-2CH LTE dash cameras running firmware version 1.012_2022.10.26 lack authentication on their web server interface. This allows attackers to access sensitive dashcam configurations and recorded footage without credentials. Anyone using this specific dashcam model with the vulnerable firmware is affected.

💻 Affected Systems

Products:
  • BlackVue DR750-2CH LTE
Versions: v.1.012_2022.10.26
Operating Systems: Embedded firmware
Default Config Vulnerable: ⚠️ Yes
Notes: This is the default configuration - no authentication is enabled by default on the web interface.

📦 What is this software?

Dr750 2ch Ir Lte Firmware by Blackvue

View all CVEs affecting Dr750 2ch Ir Lte Firmware →

Dr750 2ch Lte Firmware by Blackvue

View all CVEs affecting Dr750 2ch Lte Firmware →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Attackers remotely access all dashcam recordings, potentially obtaining sensitive location data, license plates, and personal information. They could also modify configurations to disable recording or exfiltrate data.

🟠

Likely Case

Unauthorized access to dashcam footage and configuration settings, potentially exposing driving patterns, locations, and vehicle information.

🟢

If Mitigated

With proper network segmentation and firewall rules, the dashcam is isolated from untrusted networks, limiting exposure to local attackers only.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

The vulnerability requires no authentication, making exploitation trivial. Public GitHub repositories demonstrate access techniques.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: https://blackvue.com

Restart Required: No

Instructions:

Check BlackVue website for firmware updates. If available, download and install via the BlackVue mobile app or SD card method.

🔧 Temporary Workarounds

Network Segmentation

all

Isolate the dashcam on a separate VLAN or network segment with no internet access

Firewall Rules

all

Block all external access to the dashcam's web interface (typically port 80/443)

🧯 If You Can't Patch

  • Disable the dashcam's LTE connectivity if not needed
  • Physically disconnect the dashcam when vehicle is parked for extended periods

🔍 How to Verify

Check if Vulnerable:

Access the dashcam's web interface via its IP address. If you can view configurations/recordings without authentication, it's vulnerable.

Check Version:

Check firmware version in BlackVue mobile app under Settings > Firmware Update

Verify Fix Applied:

After firmware update, attempt to access web interface without credentials - should receive authentication prompt or access denied.

📡 Detection & Monitoring

Log Indicators:

  • Unusual access patterns to dashcam web interface
  • Multiple failed authentication attempts if authentication is enabled

Network Indicators:

  • External IP addresses accessing dashcam web interface
  • Unusual traffic to dashcam port 80/443

SIEM Query:

source_ip=external AND dest_port=80 AND dest_ip=dashcam_ip

📊 Metadata

CVE ID: CVE-2023-27747
CVSS v3 Score: 7.5 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CWE: CWE-306
Published: April 13, 2023
Last Updated: February 7, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-27747, you might also want to check these:

CVE-2025-32433 10.0

This CVE describes a critical vulnerability in Erlang/OTP's SSH server that allows unauthenticated r...

Same vulnerability type (CWE-306)
CVE-2026-23693 10.0

The ElementsKit Lite WordPress plugin versions before 3.7.9 expose an unauthenticated REST endpoint ...

Same vulnerability type (CWE-306)
CVE-2025-58083 10.0

The General Industrial Controls Lynx+ Gateway has a critical authentication bypass vulnerability in ...

Same vulnerability type (CWE-306)