Unencrypted Location Broadcasting Vulnerability in DJI Drone Devices

CVE-2022-29945 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

DJI drone devices sold in 2017 through 2022 broadcast unencrypted information about the drone operator's physical location via the AeroScope protocol.

Learn more about our Physical Security Assessment.