CVE-2025-2342 – “IROAD X5 Mobile App Hard-Coded Credentials Vulnerability”

March 16, 2025
6:18 pm

CVE ID : CVE-2025-2342

Published : March 16, 2025, 4:15 p.m. | 1 hour, 3 minutes ago

Description : A vulnerability classified as critical has been found in IROAD X5 Mobile App up to 5.2.5 on Android. Affected is an unknown function of the component API Endpoint. The manipulation leads to hard-coded credentials. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 5.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2025-2342 – “IROAD X5 Mobile App Hard-Coded Credentials Vulnerability”

Elvescore.io

Recent Posts

CVE-2025-2383 – PHPGurukul Doctor Appointment Management System SQL Injection Vulnerability

CVE-2025-2384 – Real Estate Property Management System SQL Injection Vulnerability

CVE-2025-30143 – Akamai App & API Protector JavaScript Variable Assignment Vulnerability

CVE-2024-48013 – Dell SmartFabric OS10 Execution with Unnecessary Privileges Vulnerability

CVE-2024-48830 – Dell SmartFabric OS10 Command Injection Vulnerability

CVE-2025-22474 – “Dell SmartFabric OS10 SSRF Vulnerability”

CVE-2025-2342 – “IROAD X5 Mobile App Hard-Coded Credentials Vulnerability”

CVE-2025-2342 – “IROAD X5 Mobile App Hard-Coded Credentials Vulnerability”