Lucene search
+L

124 matches found

NVD
NVD
added 2025/03/18 8:15 p.m.8 views

CVE-2025-30142

An issue was discovered on G-Net Dashcam BB GONX devices. Bypassing of Device Pairing can occur. It uses MAC address verification as the sole mechanism for recognizing paired devices, allowing attackers to bypass authentication. By capturing the MAC address of an already-paired device through ARP...

8.1CVSS0.00265EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/03/18 6:27 p.m.17 views

CVE-2025-2343

A vulnerability classified as critical was found in IROAD Dash Cam X5 and Dash Cam X6 up to 20250308. Affected by this vulnerability is an unknown functionality of the component Device Pairing. The manipulation leads to hard-coded credentials. Access to the local network is required for this atta...

7.7CVSS6.6AI score0.00338EPSS
Exploits0References1
NVD
NVD
added 2025/03/18 3:16 p.m.11 views

CVE-2025-30114

An issue was discovered on the Forvia Hella HELLA Driving Recorder DR 820. Bypassing of Device Pairing can occur. The pairing mechanism relies solely on the connecting device's MAC address. By obtaining the MAC address through network scanning and spoofing it, an attacker can bypass the...

9.1CVSS0.00417EPSS
Exploits0References2
NVD
NVD
added 2025/03/18 3:16 p.m.9 views

CVE-2025-30110

On IROAD X5 devices, a Bypass of Device Pairing can occur via MAC Address Spoofing. The dashcam's pairing mechanism relies solely on MAC address verification, allowing an attacker to bypass authentication by spoofing an already-paired MAC address that can be captured via an ARP scan...

6.5CVSS0.00261EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/03/18 12:0 a.m.25 views

CVE-2025-30110

On IROAD X5 devices, a Bypass of Device Pairing can occur via MAC Address Spoofing. The dashcam's pairing mechanism relies solely on MAC address verification, allowing an attacker to bypass authentication by spoofing an already-paired MAC address that can be captured via an ARP scan...

0.00261EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/03/18 12:0 a.m.5 views

CVE-2025-30110

On IROAD X5 devices, a Bypass of Device Pairing can occur via MAC Address Spoofing. The dashcam's pairing mechanism relies solely on MAC address verification, allowing an attacker to bypass authentication by spoofing an already-paired MAC address that can be captured via an ARP scan...

6.6AI score0.00261EPSS
Exploits0References2
CVE
CVE
added 2025/03/18 12:0 a.m.48 views

CVE-2025-30142

CVE-2025-30142 affects G-Net Dashcam BB GONX devices. The vulnerability stems from using MAC address verification as the sole mechanism to recognize paired devices. An attacker who can obtain the MAC of an already-paired device (e.g., via ARP scanning) can spoof that MAC and bypass the pairing pr...

8.1CVSS6.6AI score0.00265EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2025/03/18 12:0 a.m.37 views

CVE-2025-30110

CVE-2025-30110 affects IROAD X5 dashcams. The issue is a bypass of the device pairing mechanism caused by relying solely on MAC address verification. An attacker can bypass authentication by spoofing an already‑paired MAC address that can be captured via an ARP scan. The vulnerability is document...

6.5CVSS6.7AI score0.00261EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/03/18 12:0 a.m.15 views

CVE-2025-30142

An issue was discovered on G-Net Dashcam BB GONX devices. Bypassing of Device Pairing can occur. It uses MAC address verification as the sole mechanism for recognizing paired devices, allowing attackers to bypass authentication. By capturing the MAC address of an already-paired device through ARP...

0.00265EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/03/18 12:0 a.m.5 views

CVE-2025-30142

An issue was discovered on G-Net Dashcam BB GONX devices. Bypassing of Device Pairing can occur. It uses MAC address verification as the sole mechanism for recognizing paired devices, allowing attackers to bypass authentication. By capturing the MAC address of an already-paired device through ARP...

7.2AI score0.00265EPSS
Exploits0References2
CVE
CVE
added 2025/03/18 12:0 a.m.53 views

CVE-2025-30114

CVE-2025-30114 affects the Forvia Hella HELLA Driving Recorder DR 820. The issue is a weakness in the pairing mechanism that relies solely on the connecting device’s MAC address, allowing an attacker to bypass authentication by scanning and spoofing the MAC address, potentially gaining full acces...

9.1CVSS7AI score0.00417EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2025/03/18 12:0 a.m.4 views

PT-2025-11645 · Unknown · G-Net Dashcam Bb Gonx

Name of the Vulnerable Software and Affected Versions: G-Net Dashcam BB GONX devices affected versions not specified Description: An issue was discovered where the device pairing mechanism can be bypassed. The device uses MAC address verification as the sole mechanism for recognizing paired...

8.1CVSS6.3AI score0.00265EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2025/03/18 12:0 a.m.7 views

CVE-2025-30114

An issue was discovered on the Forvia Hella HELLA Driving Recorder DR 820. Bypassing of Device Pairing can occur. The pairing mechanism relies solely on the connecting device's MAC address. By obtaining the MAC address through network scanning and spoofing it, an attacker can bypass the...

9.5AI score0.00417EPSS
Exploits0References2
NVD
NVD
added 2025/03/16 6:15 p.m.24 views

CVE-2025-2343

A vulnerability classified as critical was found in IROAD Dash Cam X5 and Dash Cam X6 up to 20250308. Affected by this vulnerability is an unknown functionality of the component Device Pairing. The manipulation leads to hard-coded credentials. Access to the local network is required for this atta...

7.7CVSS0.00338EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/03/16 5:31 p.m.9 views

CVE-2025-2343 IROAD Dash Cam X5/Dash Cam X6 Device Pairing hard-coded credentials

A vulnerability classified as critical was found in IROAD Dash Cam X5 and Dash Cam X6 up to 20250308. Affected by this vulnerability is an unknown functionality of the component Device Pairing. The manipulation leads to hard-coded credentials. Access to the local network is required for this atta...

7.7CVSS7.5AI score0.00338EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/03/16 5:31 p.m.42 views

CVE-2025-2343 IROAD Dash Cam X5/Dash Cam X6 Device Pairing hard-coded credentials

A vulnerability classified as critical was found in IROAD Dash Cam X5 and Dash Cam X6 up to 20250308. Affected by this vulnerability is an unknown functionality of the component Device Pairing. The manipulation leads to hard-coded credentials. Access to the local network is required for this atta...

7.7CVSS0.00338EPSS
Exploits0References4
CVE
CVE
added 2025/03/16 5:31 p.m.87 views

CVE-2025-2343

CVE-2025-2343 affects the IROAD Dash Cam X5 and X6 (up to 20250308). The vulnerability concerns an unknown functionality in the Device Pairing component and is due to hard-coded credentials, enabling access from the local network. The attack vector is listed as adjacent network with high attack c...

7.7CVSS7.5AI score0.00338EPSS
Exploits0References4
OSV
OSV
added 2025/03/03 8:15 p.m.6 views

CVE-2025-1880

A vulnerability was found in i-Drive i11 and i12 up to 20250227. It has been classified as problematic. Affected is an unknown function of the component Device Pairing. The manipulation leads to authentication bypass by primary weakness. It is possible to launch the attack on the physical device...

4.3CVSS4.2AI score0.00238EPSS
Exploits0References4
NVD
NVD
added 2025/03/03 8:15 p.m.12 views

CVE-2025-1880

A vulnerability was found in i-Drive i11 and i12 up to 20250227. It has been classified as problematic. Affected is an unknown function of the component Device Pairing. The manipulation leads to authentication bypass by primary weakness. It is possible to launch the attack on the physical device...

4.3CVSS0.00238EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/03/03 8:0 p.m.8 views

CVE-2025-1880 i-Drive i11/i12 Device Pairing authentication bypass

A vulnerability was found in i-Drive i11 and i12 up to 20250227. It has been classified as problematic. Affected is an unknown function of the component Device Pairing. The manipulation leads to authentication bypass by primary weakness. It is possible to launch the attack on the physical device...

2CVSS4.2AI score0.00238EPSS
Exploits0References4
Rows per page
Query Builder