CVE-2025-30135

{"id": "CVE-2025-30135", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.4, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.5, "exploitabilityScore": 3.9}]}, "published": "2025-07-25T20:15:24.203", "references": [{"url": "https://github.com/geo-chen/IROAD?tab=readme-ov-file#finding-13---cve-2025-30135-locking-owner-out-of-device-dos", "tags": ["Third Party Advisory"], "source": "[email protected]"}, {"url": "https://github.com/geo-chen/IROAD?tab=readme-ov-file#finding-8-dumping-files-over-http-and-rtsp-without-authentication", "tags": ["Third Party Advisory"], "source": "[email protected]"}, {"url": "https://www.iroadau.com.au/downloads/", "tags": ["Product"], "source": "[email protected]"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "description": [{"lang": "en", "value": "CWE-306"}]}], "descriptions": [{"lang": "en", "value": "An issue was discovered on IROAD Dashcam FX2 devices. Dumping Files Over HTTP and RTSP Without Authentication can occur. It lacks authentication controls on its HTTP and RTSP interfaces, allowing attackers to retrieve sensitive files and video recordings. By connecting to http://192.168.10.1/mnt/extsd/event/, an attacker can download all stored video recordings in an unencrypted manner. Additionally, the RTSP stream on port 8554 is accessible without authentication, allowing an attacker to view live footage."}, {"lang": "es", "value": "Se detect\u00f3 un problema en los dispositivos IROAD Dashcam FX2. Es posible que se descarguen archivos mediante HTTP y RTSP sin autenticaci\u00f3n. Carecen de controles de autenticaci\u00f3n en sus interfaces HTTP y RTSP, lo que permite a los atacantes recuperar archivos y grabaciones de v\u00eddeo confidenciales. Al conectarse a http://192.168.10.1/mnt/extsd/event/, un atacante puede descargar todas las grabaciones de v\u00eddeo almacenadas sin cifrar. Adem\u00e1s, se puede acceder a la transmisi\u00f3n RTSP en el puerto 8554 sin autenticaci\u00f3n, lo que permite a un atacante ver grabaciones en directo."}], "lastModified": "2025-11-06T20:23:29.610", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:iroadau:fx2_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A1C21728-4D54-42DB-98C8-B0B7C7A38B2C"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:iroadau:fx2:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "8E62E438-2D69-401D-B5A8-B54565CE049E"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "[email protected]"}