CVE-2025-1879

A vulnerability was found in i-Drive i11 and i12 up to 20250227 and classified as problematic. This issue affects some unknown processing of the component APK. The manipulation leads to hard-coded credentials. It is possible to launch the attack on the physical device. It was not possible to identify the current maintainer of the product. It must be assumed that the product is end-of-life.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
2.4 LOW
PHYSICAL
LOW
NONE
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
VulDBCNA
2.4 LOW
CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 3%
VendorProductVersion
i-drivei11_firmware
𝑥
≤ 20250227
i-drivei12_firmware
𝑥
≤ 20250227
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://github.com/geo-chen/i-Drive
https://vuldb.com/?ctiid.298193
https://vuldb.com/?id.298193
https://vuldb.com/?submit.510950