An issue was discovered on Marbella KR8s Dashcam FF 2.0.8 devices. When a new SD card is inserted into the dashcam, the existing password is written onto the SD card in cleartext automatically. An attacker with temporary access to the dashcam can switch the SD card to steal this password.
History

Wed, 30 Jul 2025 16:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-312
Metrics cvssV3_1

{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}

ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Wed, 30 Jul 2025 15:15:00 +0000

Type Values Removed Values Added
First Time appeared Marbella
Marbella kr8s Dashcam
Vendors & Products Marbella
Marbella kr8s Dashcam

Mon, 28 Jul 2025 14:15:00 +0000

Type Values Removed Values Added
Description An issue was discovered on Marbella KR8s Dashcam FF 2.0.8 devices. When a new SD card is inserted into the dashcam, the existing password is written onto the SD card in cleartext automatically. An attacker with temporary access to the dashcam can switch the SD card to steal this password.
References

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2025-07-28T00:00:00.000Z

Updated: 2025-07-30T15:13:19.317Z

Reserved: 2025-03-17T00:00:00.000Z

Link: CVE-2025-30124

cve-icon Vulnrichment

Updated: 2025-07-30T13:33:02.897Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2025-07-28T14:15:26.620

Modified: 2025-07-30T16:15:26.430

Link: CVE-2025-30124

cve-icon Redhat

No data.