CVE-2025-2344 - Critical Authentication Bypass in IROAD Dash Cam X5 and X6—How Remote Attackers Can Exploit Vulnerable API Endpoints
In March 2025, a critical security flaw was discovered in the IROAD Dash Cam X5 and X6 dashcam devices, versions up to firmware 20250308. This
CVE-2025-2342 - Critical Hard-Coded Credentials Vulnerability in IROAD X5 Mobile App (<=5.2.5) – Exploit and Analysis
A highly critical security flaw, now identified as CVE-2025-2342, has been found in all versions of the IROAD X5 Mobile App for Android up to
CVE-2024-58103 - Square Wire’s Missing Recursion Limit Exposes ProtoReader Exploit
In June 2024, a significant vulnerability was discovered in Square’s Wire library (before version 5.2.). The flaw, registered as CVE-2024-58103, impacts parsing logic
CVE-2025-2334 - Insecure Access Control in SpringBoot OpenAI ChatGPT Lets Attackers Delete Any User’s Chat History
In early 2025, a problematic vulnerability — CVE-2025-2334 — was disclosed affecting the popular springboot-openai-chatgpt (e84f6f5). This issue exposes users to risk by allowing unauthorized deletion of
CVE-2025-2323 - Behavioral Workflow Enforcement Vulnerability in springboot-openai-chatgpt
CVE-2025-2323 is a newly discovered vulnerability in the project springboot-openai-chatgpt (Commit e84f6f5). This flaw impacts the updateQuestionCou function found in the /api/mjkj-chat/chat/mng/
Episode
00:00:00
00:00:00