Browse all 11 CVE security advisories affecting DJI. AI-powered Chinese analysis, POCs, and references for each vulnerability.
DJI dominates the consumer and commercial drone market, primarily used for aerial photography, videography, and industrial applications. Historically, their products have faced vulnerabilities including remote code execution, cross-site scripting, and privilege escalation, often stemming from insecure web interfaces and default credentials. Notable security characteristics include extensive data collection practices and potential privacy concerns, though no major public security incidents have been widely reported. The 11 CVEs on record highlight ongoing security challenges, particularly in firmware and web components, emphasizing the need for robust patch management and secure development practices in IoT devices.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-6950 | DJI Mavic 安全漏洞 — Mini 3 ProCWE-1286 | 3.0 | Low | 2024-04-02 |
| CVE-2023-6949 | DJI Mavic 安全漏洞 — Mini 3 ProCWE-306 | 5.2 | Medium | 2024-04-02 |
This page lists every published CVE security advisory associated with DJI. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.