Security News > 2024 > August > Critical Flaws in Traccar GPS System Expose Users to Remote Attacks
2024-08-26 07:45
Two security vulnerabilities have been disclosed in the open-source Traccar GPS tracking system that could be potentially exploited by unauthenticated attackers to achieve remote code execution under certain circumstances. Both the vulnerabilities are path traversal flaws and could be weaponized if guest registration is enabled, which is the default configuration for Traccar 5, Horizon3.ai
News URL
https://thehackernews.com/2024/08/critical-flaws-in-traccar-gps-system.html
Related news
- Hackers abuse Zoom remote control feature for crypto-theft attacks (source)
- SAP fixes critical Netweaver flaw exploited in attacks (source)
- Fortinet fixes critical zero-day exploited in FortiVoice attacks (source)
- Ivanti Patches EPMM Vulnerabilities Exploited for Remote Code Execution in Limited Attacks (source)