Lucene search

[email protected]CVE-2023-39076

HistorySep 08, 2023 - 1:15 p.m.

CVE-2023-39076

2023-09-0813:15:07

[email protected]

web.nvd.nist.gov

cve-2023-39076

general motors

chevrolet equinox

2021 software

dos

nvd

4.6 Medium

CVSS3

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

4.7 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

10.5%

JSON

Injecting random data into the USB memory area on a General Motors (GM) Chevrolet Equinox 2021 Software. 2021.03.26 (build version) vehicle causes a Denial of Service (DoS) in the in-car infotainment system.

Affected configurations

NVD

Node

gmmylink_infotainment_systemMatch2021.3.26

AND

gmchevrolet_equinoxMatch2021

CPENameOperatorVersion
gm:mylink_infotainment_systemgm mylink infotainment systemeq2021.3.26

CPE	Name	Operator	Version
gm:mylink_infotainment_system	gm mylink infotainment system	eq	2021.3.26

References

blog.dhjeong.kr/posts/vuln/202307/gm-chevrolet/

blog.jhyeon.dev/posts/vuln/202307/gm-chevrolet/

nvd.nist.gov/vuln/detail/CVE-2023-39076

4.6 Medium

CVSS3

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

4.7 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

10.5%

JSON

Related for CVE-2023-39076

cvelist1 prion1 nvd1