CVE-2025-30113

An issue was discovered on the Forvia Hella HELLA Driving Recorder DR 820. Hardcoded Credentials exist in the APK for Ports 9091 and 9092. The dashcam's Android application contains hardcoded credentials that allow unauthorized access to device settings through ports 9091 and 9092. These credentials, stored in cleartext, can be exploited by an attacker who gains access to the dashcam's network.

CVSS v3 9.8 CRITICAL

9.8^/10

CVSS v3 : CRITICAL

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://github.com/geo-chen/Hella	Third Party Advisory
https://medium.com/@geochen/cve-draft-hella-driving-recorder-dr-820-ff8c4e2cca26	Permissions Required

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:hella:dr_820_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:hella:dr_820:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2025-03-18 15:16

Updated : 2025-05-22 19:51

NVD link : CVE-2025-30113

Mitre link : CVE-2025-30113

CVE.ORG link : CVE-2025-30113

JSON object : View

Products Affected

hella

dr_820
dr_820_firmware

CWE

CWE-798

Use of Hard-coded Credentials

{"id": "CVE-2025-30113", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}]}, "published": "2025-03-18T15:16:02.453", "references": [{"url": "https://github.com/geo-chen/Hella", "tags": ["Third Party Advisory"], "source": "[email protected]"}, {"url": "https://medium.com/@geochen/cve-draft-hella-driving-recorder-dr-820-ff8c4e2cca26", "tags": ["Permissions Required"], "source": "[email protected]"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "description": [{"lang": "en", "value": "CWE-798"}]}], "descriptions": [{"lang": "en", "value": "An issue was discovered on the Forvia Hella HELLA Driving Recorder DR 820. Hardcoded Credentials exist in the APK for Ports 9091 and 9092. The dashcam's Android application contains hardcoded credentials that allow unauthorized access to device settings through ports 9091 and 9092. These credentials, stored in cleartext, can be exploited by an attacker who gains access to the dashcam's network."}, {"lang": "es", "value": "Se descubri\u00f3 un problema en Forvia Hella HELLA Driving Recorder DR 820. Existen credenciales codificadas en el APK para los puertos 9091 y 9092. La aplicaci\u00f3n Android de dashcam contiene credenciales codificadas que permiten el acceso no autorizado a la configuraci\u00f3n del dispositivo a trav\u00e9s de los puertos 9091 y 9092. Estas credenciales, almacenadas en texto plano, pueden ser explotadas por un atacante que obtenga acceso a la red de dashcam."}], "lastModified": "2025-05-22T19:51:06.857", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hella:dr_820_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "53788D10-80DC-4A88-9472-D8D0CD20A457"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hella:dr_820:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "ADEE1CDA-ADA2-46F0-B689-C3E75A6C40D3"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "[email protected]"}