Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
IROAD X5 Mobile App API Endpoint hard-coded credentials
Vulnerability Description
A vulnerability classified as critical has been found in IROAD X5 Mobile App up to 5.2.5 on Android. Affected is an unknown function of the component API Endpoint. The manipulation leads to hard-coded credentials. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Vulnerability Type
使用硬编码的凭证
Vulnerability Title
IROAD X5 安全漏洞
Vulnerability Description
IROAD X5是IROAD公司的一款行车记录仪。 IROAD X5 5.2.5及之前版本存在安全漏洞,该漏洞源于硬编码凭证,可能导致远程攻击。
CVSS Information
N/A
Vulnerability Type
N/A