Vulnerability Description
An issue was discovered on Marbella KR8s Dashcam FF 2.0.8 devices. When a new SD card is inserted into the dashcam, the existing password is written onto the SD card in cleartext automatically. An attacker with temporary access to the dashcam can switch the SD card to steal this password.
CVSS Score
CRITICAL
Related Weaknesses (CWE)
References
- https://geochen.medium.com/marbella-dashcam-ab40ca41adec
- https://github.com/geo-chen/Marbella/
- https://github.com/geo-chen/Marbella/blob/main/README.md#finding-4---cve-2025-30
- https://makagps.com/
- https://github.com/geo-chen/Marbella/blob/main/README.md#finding-4---cve-2025-30
FAQ
What is CVE-2025-30124?
CVE-2025-30124 is a vulnerability with a CVSS score of 9.8 (CRITICAL). An issue was discovered on Marbella KR8s Dashcam FF 2.0.8 devices. When a new SD card is inserted into the dashcam, the existing password is written onto the SD card in cleartext automatically. An att...
How severe is CVE-2025-30124?
CVE-2025-30124 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2025-30124?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.