Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2025-30110

Опубликовано: 18 мар. 2025
Источник: nvd
CVSS3: 6.5
EPSS Низкий

Описание

On IROAD X5 devices, a Bypass of Device Pairing can occur via MAC Address Spoofing. The dashcam's pairing mechanism relies solely on MAC address verification, allowing an attacker to bypass authentication by spoofing an already-paired MAC address that can be captured via an ARP scan.

Ссылки

EPSS

Процентиль: 16%
0.00052
Низкий

6.5 Medium

CVSS3

Дефекты

CWE-290

Связанные уязвимости

github логотип

GHSA-2x4h-j98j-x2mw

CVSS3: 6.5
github
11 месяцев назад

On IROAD X5 devices, a Bypass of Device Pairing can occur via MAC Address Spoofing. The dashcam's pairing mechanism relies solely on MAC address verification, allowing an attacker to bypass authentication by spoofing an already-paired MAC address that can be captured via an ARP scan.

EPSS

Процентиль: 16%
0.00052
Низкий

6.5 Medium

CVSS3

Дефекты

CWE-290