← back
CVE-2017-5237

CVE-2017-5237

EPSS 2.0%
Due to a lack of authentication, an unauthenticated user who knows the Eview EV-07S GPS Tracker's phone number can revert the device to a factory default configuration with an SMS command, "RESET!"
Affected products
Eview · EV-07S GPS Tracker

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://community.rapid7.com/community/infosec/blog/2017/03/27/r7-2015-28-multiple-eview-ev-07s-gps-tracker-vulnerabilitieshttp://www.securityfocus.com/bid/97186