CVE-2025-69515CRITICAL 9.1EPSS p38.5%

CVE-2025-69515CVE-2025-69515

Description

An issue in JXL 9 Inch Car Android Double Din Player Android v12.0 allows attackers to force the infotainment system into accepting falsified GPS signals as legitimate, resulting in the device reporting an incorrect or static location.

Scoring

CVSS 3.19.1 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
EPSS0.50% probability of exploitation · percentile 38.5% · 2026-06-18T12:00:27Z
Published2026-04-07
Last modified2026-04-09

Underlying weaknesses· 1

CWE-941

References

  1. http://jxl.com
  2. https://github.com/thorat-shubham/JXL_Infotainment_CVE-2025-69515/blob/main/README.md

1

TypeTargetConfidenceTier
WeaknessIncorrectly Specified Destination in a Communication Channelcwe-9410%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-21034
CVE
CVE-2023-26245
CVE
CVE-2023-26246
CVE
CVE-2025-8653
CVE
CVE-2025-30113
CVE
CVE-2025-60959
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.