Ieasytec: >> Itrack Easy Security Vulnerabilities
A captured MAC/device ID of an iTrack Easy can be registered under multiple user accounts allowing access to getgps GPS data, which can allow unauthenticated parties to track the device.
CVSS Score
5.9
EPSS Score
0.011
Published
2018-07-13
getgps data in iTrack Easy can be modified without authentication by setting the data using the parametercmd:setothergps. This vulnerability can be exploited to alter the GPS data of a lost device.
CVSS Score
7.5
EPSS Score
0.012
Published
2018-07-13