Description

An issue was discovered on Marbella KR8s Dashcam FF 2.0.8 devices. Via port 7777 without any need to pair or press a physical button, a remote attacker can disable recording, delete recordings, or even disable battery protection to cause a flat battery to essentially disable the car from being used. During the process of changing these settings, there are no indications or sounds on the dashcam to alert the dashcam owner that someone else is making those changes.

INFO

Published Date :

2025-07-28T00:00:00.000Z

Last Modified :

2025-07-30T15:19:35.998Z

Source :

mitre
AFFECTED PRODUCTS

The following products are affected by CVE-2025-30126 vulnerability.

Vendors Products
Marbella
  • Kr8s Dashcam
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-30126.

URL Resource
https://geochen.medium.com/marbella-dashcam-ab40ca41adec cve-icon cve-icon
https://github.com/geo-chen/IROAD-V?tab=readme-ov-file#finding-7---cve-2025-30108-exposed-ftp-administrator-credentials cve-icon cve-icon
https://github.com/geo-chen/Marbella/ cve-icon cve-icon
https://makagps.com/ cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact