Vulnerabilities (CVE)

Filtered by vendor Audi Subscribe
Filtered by product Universal Traffic Recorder Firmware
Total 5 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2025-45587 1 Audi 2 Universal Traffic Recorder, Universal Traffic Recorder Firmware 2026-06-17 N/A 7.0 HIGH
A stack overflow in the FTP service of Audi UTR 2.0 Universal Traffic Recorder 2.0 allows attackers to cause a Denial of Service (DoS) via a crafted input.
CVE-2025-45586 1 Audi 2 Universal Traffic Recorder, Universal Traffic Recorder Firmware 2026-06-17 N/A 7.5 HIGH
An issue in Audi UTR 2.0 Universal Traffic Recorder 2.0 allows attackers to arbitrarily overwrite files via supplying a crafted PUT request.
CVE-2025-45585 1 Audi 2 Universal Traffic Recorder, Universal Traffic Recorder Firmware 2026-06-17 N/A 5.4 MEDIUM
Multiple stored cross-site scripting (XSS) vulnerabilities in Audi UTR 2.0 Universal Traffic Recorder 2.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the wifi_sta_ssid or wifi_ap_ssid parameters.
CVE-2025-45584 1 Audi 2 Universal Traffic Recorder, Universal Traffic Recorder Firmware 2026-06-17 N/A 7.5 HIGH
Incorrect access control in the web service of Audi UTR 2.0 Universal Traffic Recorder 2.0 allows attackers to download car information without authentication.
CVE-2025-45583 1 Audi 2 Universal Traffic Recorder, Universal Traffic Recorder Firmware 2026-06-17 N/A 9.1 CRITICAL
Incorrect access control in the FTP protocol of Audi UTR 2.0 Universal Traffic Recorder 2.0 allows attackers to authenticate into the service using any combination of username and password.