Forvia Hella Driving Recorder DR 820 Default Credential Vulnerability

Vulnerability

A vulnerability exists in the Forvia Hella Driving Recorder DR 820 due to the use of fixed default credentials that cannot be changed by users. The device comes with a preset SSID and password, which is broadcast continuously, allowing unauthorized access to the device's network. This issue is compounded by hardcoded credentials in the associated Android APK, which can be exploited to access device settings and features remotely.

Impact

Exploitation of this vulnerability allows unauthorized users to access the device's network, potentially leading to unauthorized management of the device and access to sensitive video footage and live streams from the camera.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

7.4

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

7.4

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Forvia Hella Driving Recorder DR 820 Default Credential Vulnerability

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating