CVE-2025-30137CRITICAL 9.8EPSS p33.6%

CVE-2025-30137CVE-2025-30137

Description

An issue was discovered in the G-Net GNET APK 2.6.2. Hardcoded credentials exist in in APK for ports 9091 and 9092. The GNET mobile application contains hardcoded credentials that provide unauthorized access to the dashcam's API endpoints on ports 9091 and 9092. Once the GNET SSID is connected to, the attacker sends a crafted authentication command with TibetList and 000000 to list settings of the dashcam at port 9091. There's a separate set of credentials for port 9092 (stream) that is also exposed in cleartext: admin + tibet. For settings, the required credentials are adim + 000000.

Scoring

CVSS 3.19.8 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS0.42% probability of exploitation · percentile 33.6% · 2026-06-18T12:00:27Z
Published2025-03-18
Last modified2026-04-15

Underlying weaknesses· 1

CWE-798

References

  1. https://github.com/geo-chen/GNET
  2. https://www.gnetsystem.com/eng/product/list?viewMode=view&idx=246&ca_id=0201

1

TypeTargetConfidenceTier
WeaknessUse of Hard-coded Credentialscwe-7980%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-30139
CVE
CVE-2025-30113
CVE
CVE-2025-30142
CVE
CVE-2025-30106
CVE
CVE-2025-63409
CVE
CVE-2025-30123
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.