CVE-2026-1743 | DJI Mavic Mini/Spark/Mini SE up to 01.00.0500 Enhanced Wi-Fi Pairing authentication replay

A vulnerability, which was classified as problematic, has been found in DJI Mavic Mini, Spark and Mini SE up to 01.00.0500. Affected by this vulnerability is an unknown functionality of the component Enhanced Wi-Fi Pairing. The manipulation leads to authentication bypass by capture-replay.

This vulnerability is listed as CVE-2026-1743. The attack must be carried out from within the local network. In addition, an exploit is available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2026-1743 | DJI Mavic Mini/Spark/Mini SE up to 01.00.0500 Enhanced Wi-Fi Pairing authentication replay

Post correlati

CVE-2025-7143 | SourceCodester Best Salon Management System 1.0 Update Tax Page /panel/edit-tax.php Tax Name cross site scripting

CVE-2024-29014 | SonicWALL NetExtender up to 10.2.339 on Windows EPC Client Update Privilege Escalation (SNWLID-2024-0011)

CVE-2024-28200 | N-able N-central 2023.4/2023.6 User Interface authentication bypass

CVE-2024-10324 | rometheme RomethemeKit for Elementor Plugin up to 1.5.2 on WordPress Template Data offcanvas-rometheme.php register_controls exposure of sensitive information through metadata