CVE-2025-69515

critical

Description

An issue in JXL 9 Inch Car Android Double Din Player Android v12.0 allows attackers to force the infotainment system into accepting falsified GPS signals as legitimate, resulting in the device reporting an incorrect or static location.

References

https://github.com/thorat-shubham/JXL_Infotainment_CVE-2025-69515/blob/main/README.md

http://jxl.com

Details

Source: Mitre, NVD

Published: 2026-04-07

Updated: 2026-04-09

Risk Information

CVSS v2

Base Score: 9.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:C/A:C

Severity: High

CVSS v3

Base Score: 9.1

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

Severity: Critical

EPSS

EPSS: 0.00018

Detections

Analytics