Browse all 4 CVE security advisories affecting BlackVue. AI-powered Chinese analysis, POCs, and references for each vulnerability.
BlackVue specializes in dashcam and fleet management solutions, primarily serving automotive and commercial vehicle sectors. Historically, vulnerabilities have included remote code execution, cross-site scripting, and privilege escalation, often stemming from web interface flaws and insecure default configurations. The product has faced scrutiny for exposing sensitive data through inadequate access controls and authentication mechanisms. While no major public breaches have been widely documented, the accumulated CVEs highlight persistent security concerns in its network-connected components. Users should implement network segmentation and regular firmware updates to mitigate risks associated with these embedded systems.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-7076 | BlackVue Dashcam 590X Configuration upload.cgi access control — Dashcam 590XCWE-284 | 5.4 | Medium | 2025-07-06 |
| CVE-2025-7075 | BlackVue Dashcam 590X HTTP Endpoint upload.cgi unrestricted upload — Dashcam 590XCWE-434 | 6.3 | Medium | 2025-07-05 |
| CVE-2025-2356 | BlackVue App API deviceDelete get request method with sensitive query strings — AppCWE-598 | 3.7 | Low | 2025-03-17 |
| CVE-2025-2355 | BlackVue App API Endpoint credentials storage — AppCWE-256 | 3.3 | Low | 2025-03-17 |
This page lists every published CVE security advisory associated with BlackVue. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.