CNNVD-202511-825 Information

CNNVD ID

CNNVD-202511-825

Related CVE

CVE-2025-12915

• CNNVD Published: 2025-11-08

Description (Chinese)

70mai X200是中国70迈（70mai）公司的一个只能云台行车记录仪。 70mai X200 20251019及之前版本存在安全漏洞，该漏洞源于组件Init Script Handler存在文件包含问题，可能导致本地攻击。

Description (English)

70mai X200 is a cloud-only car recorder at 70mai (70mai) in China. There was a security loophole in 70mai X200 20251019 and earlier versions, which stemmed from the documentation of the component Init Script Handler, which could lead to local attacks.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

70迈

Published

2025-11-08

Last Modified

2026-02-24

References

https://vuldb.com/?id.331633 https://github.com/geo-chen/70mai/blob/main/README.md#finding-11-init-script-binary-hijack-persistence-vulnerability-in-70mai-x200-omni-dashcam https://vuldb.com/?submit.678285 https://vuldb.com/?ctiid.331633 https://access.redhat.com/security/cve/cve-2025-12915