CVE-2025-6531 MEDIUM

CVE-2025-6531: SIFUSM/MZZYG BD S1 RTSP Live Video Stream Endpoint access control

Vendor Sifusm

Product BD S1

Weakness CWE-284

Published June 23, 2025

Last update June 26, 2025

View on NVD All CVEs

CVSS base score

5.3/10

Attack vector Adjacent

Attack complexity Low

Privileges required None

User interaction None

Confidentiality —

Integrity —

CVSS vector

CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P

What the vulnerability does

01Description

A vulnerability was found in SIFUSM/MZZYG BD S1 up to 20250611. It has been declared as problematic. This vulnerability affects unknown code of the component RTSP Live Video Stream Endpoint. The manipulation leads to improper access controls. Access to the local network is required for this attack to succeed. The exploit has been disclosed to the public and may be used. This dashcam is distributed by multiple resellers and different names.

Key dates

02Disclosure timeline

June 23, 2025 CVE published

June 26, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2025-6531

Related vulnerabilities

Identifiers

CVE CVE-2025-6531

CWE CWE-284

CVSS 5.3 / MEDIUM

Affected versions

Vendor Sifusm

Product BD S1

Affected 20250611

Vendor Mzzyg

Product BD S1

Affected 20250611

CVE-2025-6531: SIFUSM/MZZYG BD S1 RTSP Live Video Stream Endpoint access control

01Description

02Disclosure timeline

03References

04Related CVE