Audi: >> Universal Traffic Recorder Security Vulnerabilities
An issue in Audi UTR 2.0 Universal Traffic Recorder 2.0 allows attackers to arbitrarily overwrite files via supplying a crafted PUT request.
CVSS Score
7.5
EPSS Score
0.0
Published
2025-09-12
A stack overflow in the FTP service of Audi UTR 2.0 Universal Traffic Recorder 2.0 allows attackers to cause a Denial of Service (DoS) via a crafted input.
CVSS Score
7.0
EPSS Score
0.001
Published
2025-09-12
Incorrect access control in the FTP protocol of Audi UTR 2.0 Universal Traffic Recorder 2.0 allows attackers to authenticate into the service using any combination of username and password.
CVSS Score
9.1
EPSS Score
0.0
Published
2025-09-12
Incorrect access control in the web service of Audi UTR 2.0 Universal Traffic Recorder 2.0 allows attackers to download car information without authentication.
CVSS Score
7.5
EPSS Score
0.0
Published
2025-09-12
Multiple stored cross-site scripting (XSS) vulnerabilities in Audi UTR 2.0 Universal Traffic Recorder 2.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the wifi_sta_ssid or wifi_ap_ssid parameters.
CVSS Score
5.4
EPSS Score
0.0
Published
2025-09-12