CVE-2025-7076 – BlackVue Dashcam 590X Configuration Handler Local File Inclusion Vulnerability

July 5, 2025

CVE ID : CVE-2025-7076

Published : July 6, 2025, 1:15 a.m. | 53 minutes ago

Description : A vulnerability was found in BlackVue Dashcam 590X up to 20250624. It has been rated as critical. Affected by this issue is some unknown functionality of the file /upload.cgi of the component Configuration Handler. The manipulation leads to improper access controls. The attack needs to be initiated within the local network. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 5.4 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous Article“A fantastic device for creative users” — this $550 discount on ASUS’s 3K OLED creator laptop disappears before Prime Day

Next Article CVE-2025-7075 – BlackVue Dashcam 590X HTTP Endpoint Unrestricted File Upload Vulnerability

10 Top Node.js Development Companies for Enterprise-Scale Projects (2025-2026 Ranked & Reviewed)

12 Must-Know Cost Factors When Hiring Node.js Developers for Your Enterprise

Mirantis reveals Lens Prism, an AI copilot for operating Kubernetes clusters

Avoid these common platform engineering mistakes

A UN Human Rights Council report lists Microsoft among big tech companies that “profit” from Gaza genocide

The best Costco deals to compete with Prime Day: TVs, laptops, Apple products, and more

This 9-in-1 off-grid portable power station has a 17-year lifespan – and it’s over 50% off

DistroWatch Weekly, Issue 1129

Token System using PHP and MySQL

Token System using PHP and MySQL

Create React UI component with uncontrollable

Flaget – new small 5kB CLI argument parser

A UN Human Rights Council report lists Microsoft among big tech companies that “profit” from Gaza genocide

A UN Human Rights Council report lists Microsoft among big tech companies that “profit” from Gaza genocide

Microsoft Forms Was Down for Some Users; But Now Fixed

DistroWatch Weekly, Issue 1129

CVE-2025-7076 – BlackVue Dashcam 590X Configuration Handler Local File Inclusion Vulnerability

Citrix Releases Emergency Patches for Actively Exploited CVE-2025-6543 in NetScaler ADC

CISA Adds 3 Flaws to KEV Catalog, Impacting AMI MegaRAC, D-Link, Fortinet

CVE-2025-5141 – Fortra Core Privileged Access Manager BoKS Server Agent Information Disclosure Vulnerability

CVE-2025-6280 – TransformerOptimus SuperAGI EmailToolKit Path Traversal Vulnerability

CVE-2025-6305 – Code-projects Online Shoe Store SQL Injection Vulnerability

AMD’s Ryzen 7 7800X3D hits the lowest price of the year — Why wait for Prime Day?

Optimize query responses with user feedback using Amazon Bedrock embedding and few-shot prompting

AMD’s Ryzen 7 7800X3D is down to the lowest price of the year at Amazon — Memorial Day savings drop it to $385

CVE-2025-5956 – WP Human Resource Management Plugin Arbitrary User Deletion Vulnerability

Sam Altman predicts agentic AI “clicking around the Internet” — If you trust it not to empty your bank account or delete data

CVE-2025-7076 – BlackVue Dashcam 590X Configuration Handler Local File Inclusion Vulnerability

Related Posts