EUVD-2025-7896

Malicious code in bioql PyPI...

EUVD-2025-6686

Malicious code in bioql PyPI...

EUVD-2025-22906

Malicious code in bioql PyPI...

CVE-2025-30125

An issue was discovered on Marbella KR8s Dashcam FF 2.0.8 devices. All dashcams were shipped with the same default credentials of 12345678, which creates an insecure-by-default condition. For users who change their passwords, it's limited to 8 characters. These short passwords can be cracked in 8...

CVE-2025-30125

The CVE-2025-30125 entry concerns Marbella KR8s Dashcam FF 2.0.8 devices. Affected component is the device’s authentication: all units shipped with default credentials of 12345678, creating an insecure-by-default condition. Passwords for changed accounts are limited to 8 characters, enabling targ...

CVE-2025-30106

On IROAD v9 devices, the dashcam has hardcoded default credentials "qwertyuiop" that cannot be changed by the user. This allows an attacker within Wi-Fi range to connect to the device's network to perform sniffing...

CVE-2025-30141

An issue was discovered on G-Net Dashcam BB GONX devices. One can Remotely Dump Video Footage and the Live Video Stream. It exposes API endpoints on ports 9091 and 9092 that allow remote access to recorded and live video feeds. An attacker who connects to the dashcam's network can retrieve all...

CVE-2025-30113

CVE-2025-30113 affects the Forvia Hella HELLA Driving Recorder DR 820. The dashcam Android APK stores hardcoded credentials in cleartext, enabling unauthorized access to device settings via network ports 9091 and 9092. Affects the dashcam/app, with root cause described as hardcoded credentials in...

CVE-2025-30113

An issue was discovered on the Forvia Hella HELLA Driving Recorder DR 820. Hardcoded Credentials exist in the APK for Ports 9091 and 9092. The dashcam's Android application contains hardcoded credentials that allow unauthorized access to device settings through ports 9091 and 9092. These...