Critical Flaws in Traccar GPS System Expose Users to Remote Attacks
August 26, 2024 at 04:00AM Two security vulnerabilities in the Traccar GPS tracking system, CVE-2024-24809 and CVE-2024-31214, allow unauthenticated attackers to achieve remote code execution if guest registration is enabled. The issues have been addressed in Traccar 6, released in April 2024, which turns off self-registration by default. Attack methods and system-specific exploitation details are … Read more