fkie_cve-2025-30127
Vulnerability from fkie_nvd
Published
2025-08-06 17:15
Modified
2025-08-06 20:23
Severity ?
9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Summary
An issue was discovered on Marbella KR8s Dashcam FF 2.0.8 devices. Once access is gained either by default, common, or cracked passwords, the video recordings (containing sensitive routes, conversations, and footage) are open for downloading by creating a socket to command port 7777, and then downloading video via port 7778 and audio via port 7779.
References
cve@mitre.orghttps://geochen.medium.com/marbella-dashcam-ab40ca41adec
cve@mitre.orghttps://github.com/geo-chen/Marbella/
cve@mitre.orghttps://github.com/geo-chen/Marbella/blob/main/README.md#finding-2---cve-2025-30127-video-recordings-open-to-being-downloaded-via-ports-7777-7778-7779
cve@mitre.orghttps://makagps.com/
Impacted products
Vendor Product Version


To clipboard 

{
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "An issue was discovered on Marbella KR8s Dashcam FF 2.0.8 devices. Once access is gained either by default, common, or cracked passwords, the video recordings (containing sensitive routes, conversations, and footage) are open for downloading by creating a socket to command port 7777, and then downloading video via port 7778 and audio via port 7779."
    },
    {
      "lang": "es",
      "value": "Se detect\u00f3 un problema en los dispositivos Marbella KR8s Dashcam FF 2.0.8. Una vez que se obtiene acceso mediante contrase\u00f1as predeterminadas, comunes o pirateadas, las grabaciones de video (que contienen rutas, conversaciones y grabaciones confidenciales) se abren para su descarga mediante la creaci\u00f3n de un socket en el puerto de comando 7777 y la descarga posterior del video a trav\u00e9s del puerto 7778 y el audio a trav\u00e9s del puerto 7779."
    }
  ],
  "id": "CVE-2025-30127",
  "lastModified": "2025-08-06T20:23:37.600",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 9.8,
          "baseSeverity": "CRITICAL",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 5.9,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2025-08-06T17:15:38.270",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "https://geochen.medium.com/marbella-dashcam-ab40ca41adec"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://github.com/geo-chen/Marbella/"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://github.com/geo-chen/Marbella/blob/main/README.md#finding-2---cve-2025-30127-video-recordings-open-to-being-downloaded-via-ports-7777-7778-7779"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://makagps.com/"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Awaiting Analysis",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-200"
        },
        {
          "lang": "en",
          "value": "CWE-284"
        },
        {
          "lang": "en",
          "value": "CWE-521"
        }
      ],
      "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
      "type": "Secondary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.