2Nis
CVE-2023-6949 | DJI Mini 3 Pro prior 01.00.1200 HTTP Service missing authentication
A vulnerability has been found in DJI Mini 3 Pro and classified as critical. This vulnerability affects unknown code of the component HTTP Service. The manipulation leads to missing authentication. This vulnerability was named CVE-2023-6949. The attack needs to be done within the local network. There is no exploit available. The real existence of this vulnerability is still doubted at the moment. It is recommended to upgrade the affected component.