PT-2025-11372 · Iroad · Iroad Dash Cam X5+1

Geochen

Published

2025-03-15

Updated

2025-03-17

CVE-2025-2345

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions IROAD Dash Cam X5 and Dash Cam X6 up to 20250308

Description A very critical vulnerability was found in IROAD Dash Cam X5 and Dash Cam X6, affecting an unknown part. The manipulation leads to improper authorization, and it is possible to initiate the attack remotely. The vendor was contacted early about this disclosure but did not respond in any way.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

RCE

Improper Authorization

Incorrect Privilege Assignment

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-285CWE-266

Related Identifiers

CVE-2025-2345

Affected Products

Iroad Dash Cam X5

Iroad Dash Cam X6

PT-2025-11372 · Iroad · Iroad Dash Cam X5+1

CVE-2025-2345

Weakness Enumeration

Related Identifiers

Affected Products

References · 16