VYPR

X5

by Iroad

CVEs (2)

  • CVE-2025-30110MedMar 18, 2025
    risk 0.42cvss 6.5epss 0.00

    On IROAD X5 devices, a Bypass of Device Pairing can occur via MAC Address Spoofing. The dashcam's pairing mechanism relies solely on MAC address verification, allowing an attacker to bypass authentication by spoofing an already-paired MAC address that can be captured via an ARP…

  • CVE-2019-15383Nov 14, 2019
    risk 0.00cvss epss 0.00

    The Allview X5 Android device with a build fingerprint of ALLVIEW/X5_Soul_Mini/X5_Soul_Mini:8.1.0/O11019/1522468763:userdebug/release-keys contains a pre-installed app with a package name of com.mediatek.wfo.impl app (versionCode=27, versionName=8.1.0) that allows any app…