CVE-2025-30142HIGH 8.1EPSS p16.8%

CVE-2025-30142CVE-2025-30142

Description

An issue was discovered on G-Net Dashcam BB GONX devices. Bypassing of Device Pairing can occur. It uses MAC address verification as the sole mechanism for recognizing paired devices, allowing attackers to bypass authentication. By capturing the MAC address of an already-paired device through ARP scanning or other means, an attacker can spoof the MAC address and connect to the dashcam without going through the pairing process. This enables full access to the device.

Scoring

CVSS 3.18.1 (HIGH)
VectorCVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
EPSS0.26% probability of exploitation · percentile 16.8% · 2026-06-18T12:00:27Z
Published2025-03-18
Last modified2025-07-01

Underlying weaknesses· 1

CWE-290

References

  1. https://github.com/geo-chen/GNET
  2. https://www.gnetsystem.com/eng/product/list?viewMode=view&idx=246&ca_id=0201

1

TypeTargetConfidenceTier
WeaknessAuthentication Bypass by Spoofingcwe-2900%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-30139
CVE
CVE-2025-30114
CVE
CVE-2025-30133
CVE
CVE-2025-30137
CVE
CVE-2025-30122
CVE
Dahua IP Camera Authentication Bypass Vulnerability
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.