IROAD Q Series Dashcam Hardcoded Default Credentials Allow Network Sniffing

Vulnerability

A vulnerability exists in IROAD Q Series dashcams, including the Q9 model, due to hardcoded default Wi-Fi passwords that cannot be changed by the user. This flaw enables an attacker within Wi-Fi range to connect to the dashcam's network and intercept data from connected devices, such as the user's smartphone.

Impact

Exploitation of this vulnerability allows for unauthorized access to the dashcam's network, where an attacker can perform data sniffing on connected devices.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.0

exploitability

6.2

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.0

exploitability

6.2

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

IROAD Q Series Dashcam Hardcoded Default Credentials Allow Network Sniffing

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating