CVE-2025-2556
Audi UTR Dashcam Video Stream hard-coded credentials
We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.
Please see our statement on Data Privacy.
Audi UTR Dashcam Video Stream hard-coded credentials
A vulnerability classified as problematic was found in Audi UTR Dashcam 2.0. Affected by this vulnerability is an unknown functionality of the component Video Stream Handler. The manipulation leads to hard-coded credentials. The attack can only be initiated within the local network. The exploit has been disclosed to the public and may be used. Upgrading to version 2.89 and 2.90 is able to address this issue. It is recommended to upgrade the affected component. The vendor was contacted early about these issues and acted very professional. Version 2.89 is fixing this issue for new customers and 2.90 is going to fix it for existing customers.
In Audi UTR Dashcam 2.0 wurde eine problematische Schwachstelle entdeckt. Hierbei betrifft es unbekannten Programmcode der Komponente Video Stream Handler. Dank Manipulation mit unbekannten Daten kann eine hard-coded credentials-Schwachstelle ausgenutzt werden. Umgesetzt werden kann der Angriff im lokalen Netzwerk. Der Exploit steht zur öffentlichen Verfügung. Ein Aktualisieren auf die Version 2.89 and 2.90 vermag dieses Problem zu lösen. Als bestmögliche Massnahme wird das Einspielen eines Upgrades empfohlen.
| 2025-03-20: | Advisory disclosed |
| 2025-03-20: | VulDB entry created |
| 2025-03-20: | VulDB entry last update |
geochen (VulDB User)
vuldb.com/?id.300169 (VDB-300169 | Audi UTR Dashcam Video Stream hard-coded credentials)
vuldb.com/?ctiid.300169 (VDB-300169 | CTI Indicators (IOB, IOC, TTP))
vuldb.com/?submit.513392 (Submit #513392 | Audi UTR Dashcam 2.0 File and Directory Information Exposure)
github.com/geo-chen/Audi/blob/main/README.md
Support options
