Vulnerability CVE-2022-2107


Published: 2022-07-20

Description:
The MiCODUS MV720 GPS tracker API server has an authentication mechanism that allows devices to use a hard-coded master password. This may allow an attacker to send SMS commands directly to the GPS tracker as if they were coming from the GPS owner??s mobile number.

Type:

CWE-798

 References:
https://www.cisa.gov/uscert/ics/advisories/icsa-22-200-01

Copyright 2026, cxsecurity.com

 

Back to Top