cvedb.io
CVE-2022-40918
CRITICAL · CVSS 9.8
EPSS exploitation probability: 0%
Published 2022-12-06T00:15:10.157 · Last modified 2026-06-17T05:02:14.013

Summary

Buffer overflow in firmware lewei_cam binary version 2.0.10 in Force 1 Discovery Wifi U818A HD+ FPV Drone allows attacker to gain remote code execution as root user via a specially crafted UDP packet. Please update the Reference section to these links > http://thiscomputer.com/ > https://www.bostoncyber.org/ > https://medium.com/@meekworth/exploiting-the-lw9621-drone-camera-module-773f00081368

Affected products

force1rc — discovery_wifi_u818a_hd\+_fpv_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when force1rc ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.