CVE-2025-2555

Name of the Vulnerable Software and Affected Versions Audi Universal Traffic Recorder App versions 2.0 through 2.0

Description A vulnerability has been found in the Audi Universal Traffic Recorder App, affecting an unknown function of the component FTP Credentials. The manipulation leads to the use of a hard-coded password. Attacking locally is a requirement, and the complexity of an attack is rather high. The exploitability is told to be difficult. The exploit has been disclosed to the public and may be used.

Recommendations For Audi Universal Traffic Recorder App version 2.0, upgrade to version 2.89 for new customers or version 2.90 for existing customers to address this issue. As a temporary workaround, consider restricting access to the FTP Credentials component until a patch is available. Avoid using hard-coded passwords in the affected component until the issue is resolved.