CVE-2025-30125 Information

Jul 29, 2025 cve

Description

An issue was discovered on Marbella KR8s Dashcam FF 2.0.8 devices. All dashcams were shipped with the same default credentials of 12345678 which creates an insecure-by-default condition. For users who change their passwords it’s limited to 8 characters. These short passwords can be cracked in 8 hours via low-end commercial cloud resources.

Reference

https://geochen.medium.com/marbella-dashcam-ab40ca41ade https://github.com/geo-chen/Marbella/ https://github.com/geo-chen/Marbella/blob/main/README.md#finding-1—cve-2025-30125-same-default-credentials-and-limited-password-combinations https://makagps.com/ https://www.protiviti.com/sg-en/blogs/6259-8-character-password-still-dead

CNNVD-202507-3522 (Published: 2025-07-28)

Share on:

CVE-2025-30125 Information

Description

Reference

Related CNNVD