14 matches found
EUVD-2025-7238
Malicious code in bioql PyPI...
CVE-2025-30111
On IROAD v9 devices, one can Remotely Dump Video Footage and the Live Video Stream. The dashcam exposes endpoints that allow unauthorized users, who gained access through other means, to list and download recorded videos, as well as access live video streams without proper authentication...
CVE-2025-30106
On IROAD v9 devices, the dashcam has hardcoded default credentials "qwertyuiop" that cannot be changed by the user. This allows an attacker within Wi-Fi range to connect to the device's network to perform sniffing...
CVE-2025-30107
On IROAD V9 devices, Managing Settings and Obtaining Sensitive Data and Sabotaging the Car Battery can be performed by unauthorized parties. A vulnerability in the dashcam's configuration management allows unauthorized users to modify settings, disable critical functions, and turn off battery...
CVE-2025-30111
On IROAD v9 devices, one can Remotely Dump Video Footage and the Live Video Stream. The dashcam exposes endpoints that allow unauthorized users, who gained access through other means, to list and download recorded videos, as well as access live video streams without proper authentication...
CVE-2025-30107
On IROAD V9 devices, Managing Settings and Obtaining Sensitive Data and Sabotaging the Car Battery can be performed by unauthorized parties. A vulnerability in the dashcam's configuration management allows unauthorized users to modify settings, disable critical functions, and turn off battery...
CVE-2025-30106
On IROAD v9 devices, the dashcam has hardcoded default credentials "qwertyuiop" that cannot be changed by the user. This allows an attacker within Wi-Fi range to connect to the device's network to perform sniffing...
CVE-2025-30106
On IROAD v9 devices, the dashcam has hardcoded default credentials "qwertyuiop" that cannot be changed by the user. This allows an attacker within Wi-Fi range to connect to the device's network to perform sniffing...
CVE-2025-30107
On IROAD V9 devices, Managing Settings and Obtaining Sensitive Data and Sabotaging the Car Battery can be performed by unauthorized parties. A vulnerability in the dashcam's configuration management allows unauthorized users to modify settings, disable critical functions, and turn off battery...
CVE-2025-30106
On IROAD v9 devices, the dashcam has hardcoded default credentials "qwertyuiop" that cannot be changed by the user. This allows an attacker within Wi-Fi range to connect to the device's network to perform sniffing...
CVE-2025-30107
The CVE-2025-30107 entry concerns IROAD V9 dashcam devices, where a vulnerability in the configuration management of the dashcam allows unauthorized users to modify settings, disable critical functions, and turn off battery protection, potentially causing physical damage to the vehicle. Affected ...
CVE-2025-30106
The CVE-2025-30106 entry concerns IROAD v9 dashcams that ship with hardcoded default credentials ("qwertyuiop") which cannot be changed by the user. The credential hardening absence enables an attacker within Wi‑Fi range to connect to the device’s network for sniffing. Public sources in the conne...
CVE-2025-30111
CVE-2025-30111 affects IROAD v9 dashcams. The issue arises from exposed endpoints that allow unauthorized users to list and download recorded videos and to access live video streams without proper authentication. Several sources (e.g., Red Hat advisory, NVD/NVD-linked entries, and CVE listings) d...
CVE-2025-30107
On IROAD V9 devices, Managing Settings and Obtaining Sensitive Data and Sabotaging the Car Battery can be performed by unauthorized parties. A vulnerability in the dashcam's configuration management allows unauthorized users to modify settings, disable critical functions, and turn off battery...