CVE-2025-30111
📋 TL;DR
This vulnerability allows unauthorized remote access to video footage and live streams from IROAD v9 dashcams. Attackers who gain initial access through other means can list and download recorded videos without authentication. This affects all users of vulnerable IROAD v9 dashcam devices.
💻 Affected Systems
- IROAD v9 dashcams
⚠️ Manual Verification Required
This CVE does not have specific version information in our database, so automatic vulnerability detection cannot determine if your system is affected.
Why? The CVE database entry doesn't specify which versions are vulnerable (no version ranges provided by the vendor/NVD).
🔒 Custom verification scripts are available for registered users. Sign up free to download automated test scripts.
- Review the CVE details at NVD
- Check vendor security advisories for your specific version
- Test if the vulnerability is exploitable in your environment
- Consider updating to the latest version as a precaution
⚠️ Risk & Real-World Impact
Worst Case
Complete compromise of all video recordings and real-time surveillance capability, enabling stalking, blackmail, or evidence tampering.
Likely Case
Unauthorized access to recorded footage, potentially revealing sensitive location data, driving patterns, or personal information.
If Mitigated
Limited impact with proper network segmentation and access controls preventing external access to dashcam endpoints.
🎯 Exploit Status
Exploitation requires initial access to the network where the dashcam resides. The vulnerability itself is an authentication bypass on exposed endpoints.
🛠️ Fix & Mitigation
✅ Official Fix
Patch Version: Check with vendor for specific patched firmware version
Vendor Advisory: https://iroad-dashcam.nl/iroad/iroad-x5/
Restart Required: Yes
Instructions:
1. Contact IROAD support for latest firmware. 2. Download firmware update. 3. Install via dashcam interface or SD card method. 4. Verify authentication is required for video endpoints.
🔧 Temporary Workarounds
Network Segmentation
allIsolate dashcam devices on separate VLAN or network segment without internet access
Firewall Rules
allBlock external access to dashcam IP addresses and ports
🧯 If You Can't Patch
- Disconnect dashcam from network entirely and use local SD card access only
- Implement strict network access controls allowing only authorized devices to communicate with dashcam
🔍 How to Verify
Check if Vulnerable:
Attempt to access dashcam video endpoints without authentication from a network-connected deviceCheck Version:
Check firmware version in dashcam settings menu or via manufacturer appVerify Fix Applied:
Verify authentication is required when accessing /video or /live endpoints📡 Detection & Monitoring
Log Indicators:
- Unauthorized access attempts to video endpoints
- Multiple failed authentication attempts followed by successful video access
Network Indicators:
- Unusual traffic patterns to dashcam video endpoints
- External IP addresses accessing internal dashcam services
SIEM Query:
source_ip="dashcam_ip" AND (uri_path="/video" OR uri_path="/live") AND auth_status="failed"