How severe is CVE-2025-2347?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 6.3 out of 10.

What type of vulnerability is CVE-2025-2347?

This is classified as CWE-1393, which is a common weakness in software security.

CVE-2025-2347 - MEDIUM Severity | CVSS 6.3

Vulnerability Description

A vulnerability was found in IROAD Dash Cam FX2 up to 20250308 and classified as problematic. This issue affects some unknown processing of the component Device Registration. The manipulation of the argument Password with the input qwertyuiop leads to use of default password. The attack needs to be done within the local network. The exploit has been disclosed to the public and may be used.

Related Vulnerabilities

CVE-2025-2921

MEDIUM

CVSS:6.4(Medium)

A vulnerability classified as critical has been found in Netis WF-2404 1.1.124EN. Affected is an unknown function of the file /etc/passwd. The manipulation with the input Realtek leads to use of defau...

CWE-13932025

CVE-2024-48987

MEDIUM

CVSS:6.6(Medium)

Snipe-IT before 7.0.10 allows remote code execution (associated with cookie serialization) when an attacker knows the APP_KEY. This is exacerbated by .env files, available from the product's repositor...

CWE-13932024

CVE-2024-13966

MEDIUM

CVSS:7.3(High)

ZKTeco BioTime allows unauthenticated attackers to enumerate usernames and log in as any user with a password unchanged from the default value '123456'. Users should change their passwords (located un...

CWE-13932024

CVE-2023-43042

HIGH

CVSS:7.5(High)

IBM SAN Volume Controller, IBM Storwize, IBM FlashSystem and IBM Storage Virtualize 8.3 products use default passwords for a privileged user. IBM X-Force ID: 266874.

CWE-13932023

CVE-2025-26701

CRITICAL

CVSS:10.0(Critical)

An issue was discovered in Percona PMM Server (OVA) before 3.0.0-1.ova. The default service account credentials can lead to SSH access, use of Sudo to root, and sensitive data exposure. This is fixed ...

CWE-13932025

CVE-2022-4126

CRITICAL

CVSS:9.8(Critical)

Use of Default Password vulnerability in ABB RCCMD on Windows, Linux, MacOS allows Try Common or Default Usernames and Passwords.This issue affects RCCMD: before 4.40 230207.

CWE-13932022