CVE-2025-30118

Name of the Vulnerable Software and Affected Versions Audi Universal Traffic Recorder version 2.88

Description The issue concerns susceptibility to denial of service. It uses the same default credentials for all devices and does not implement proper multi-device authentication, allowing attackers to deny the owner access by occupying the only available connection. The SSID remains broadcast at all times, increasing exposure to potential attacks.

Recommendations For Audi Universal Traffic Recorder version 2.88, consider changing the default credentials to unique ones for each device and implement proper multi-device authentication to prevent unauthorized access. As a temporary workaround, restrict access to the device's connection to minimize the risk of denial of service attacks.