IROAD Dash Cam X5 Default Credentials Vulnerability

Vulnerability

A vulnerability exists in the IROAD Dash Cam X5 in versions prior to 20250203, allowing local attackers to exploit default credentials associated with the camera's SSID. This vulnerability arises from the camera broadcasting a fixed SSID with unchangeable default credentials, enabling unauthorized access to the device's network. The issue's complexity is high, making exploitation difficult, but the vulnerability has been publicly disclosed and could be exploited.

Impact

Exploitation of this vulnerability allows unauthorized users to connect to the dash cam's network using default credentials, potentially leading to unauthorized access and interception of data from connected devices, such as smartphones.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

6.2

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

6.2

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

IROAD Dash Cam X5 Default Credentials Vulnerability

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating