Security News > 2024 > August > Critical Flaws in Traccar GPS System Expose Users to Remote Attacks
2024-08-26 07:45
Two security vulnerabilities have been disclosed in the open-source Traccar GPS tracking system that could be potentially exploited by unauthenticated attackers to achieve remote code execution under certain circumstances. Both the vulnerabilities are path traversal flaws and could be weaponized if guest registration is enabled, which is the default configuration for Traccar 5, Horizon3.ai
News URL
https://thehackernews.com/2024/08/critical-flaws-in-traccar-gps-system.html
Related news
- Critical vulnerability in the RADIUS protocol leaves networking equipment open to attack (source)
- Critical Windows licensing bugs, plus two others under attack, top Patch Tuesday (source)
- CISA warns critical Geoserver GeoTools RCE flaw is exploited in attacks (source)
- Critical Apache HugeGraph Vulnerability Under Attack - Patch ASAP (source)
- Critical Flaw in Telerik Report Server Poses Remote Code Execution Risk (source)
- Securing remote access to mission-critical OT assets (source)
- Critical Security Flaw in WhatsUp Gold Under Active Attack - Patch Now (source)
- Industrial Remote Access Tool Ewon Cosy+ Vulnerable to Root Access Attacks (source)
- Critical SAP flaw allows remote attackers to bypass authentication (source)
- CISA warns critical SolarWinds RCE bug is exploited in attacks (source)