Critical Flaws in Traccar GPS System Expose Users to Remote Attacks
Critical Flaws in Traccar GPS System Expose Users to Remote Attacks
26 August 2024
Two security vulnerabilities have been disclosed in the open-source Traccar GPS tracking system that could be potentially exploited by unauthenticated attackers to achieve remote code execution under certain circumstances.
Both the vulnerabilities are path traversal flaws and could be weaponized if guest registration is enabled, which is the default configuration for Traccar 5, Horizon3.ai