Description
An issue was discovered on Marbella KR8s Dashcam FF 2.0.8 devices. Via port 7777 without any need to pair or press a physical button, a remote attacker can disable recording, delete recordings, or even disable battery protection to cause a flat battery to essentially disable the car from being used. During the process of changing these settings, there are no indications or sounds on the dashcam to alert the dashcam owner that someone else is making those changes.
References (4)
Core 4
Core References
Various Sources
https://geochen.medium.com/marbella-dashcam-ab40ca41adec
Various Sources
https://github.com/geo-chen/IROAD-V?tab=readme-ov-file#finding-7---cve-2025-30108-exposed-ftp-administrator-credentials
Various Sources
https://makagps.com/
Scores
CVSS v3
5.3
EPSS
0.0009
EPSS Percentile
25.4%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
yes
Technical Impact
partial
Details
CWE
CWE-306
Status
published
Published
Jul 28, 2025
Tracked Since
Feb 18, 2026