12 matches found
BMW Automotive Telematics Control Unit Design Vulnerability
BMW vehicles etc. are automotive products of the German company BMW Bayerische Motoren Werke AG.Telematics Control Unit Telematic Communication Box or TCB is one of the automatic transmission control units used. A security vulnerability exists in the Telematics Control Unit on BMW vehicles models...
Multiple BMW Head Unit HU_NBT Component Design Vulnerabilities
BMW i Series, etc. are different series of automobile products of BMW Bayerische Motoren Werke AG, Germany.Head Unit HUNBT Infotainment component is a set of infotainment system of the system. A security vulnerability exists in the Head Unit HUNBT component on several BMW vehicles vehicles...
Design/Logic Flaw
The Telematics Control Unit aka Telematic Communication Box or TCB, when present on BMW vehicles produced in 2012 through 2018, allows a remote attack via a cellular network...
Code injection
The Head Unit HUNBT aka Infotainment component on BMW i Series, BMW X Series, BMW 3 Series, BMW 5 Series, and BMW 7 Series vehicles produced in 2012 through 2018 allows a local attack when a USB device is plugged in...
CVE-2018-9318
The Telematics Control Unit aka Telematic Communication Box or TCB, when present on BMW vehicles produced in 2012 through 2018, allows a remote attack via a cellular network...
CVE-2018-9313
The Head Unit HUNBT aka Infotainment component on BMW i Series, BMW X Series, BMW 3 Series, BMW 5 Series, and BMW 7 Series vehicles produced in 2012 through 2018 allows a remote attack via Bluetooth when in pairing mode, leading to a Head Unit reboot...
Design/Logic Flaw
The Telematics Control Unit aka Telematic Communication Box or TCB, when present on BMW vehicles produced in 2012 through 2018, allows a remote attack via a cellular network...
CVE-2018-9314
The Head Unit HUNBT aka Infotainment component on BMW i Series, BMW X Series, BMW 3 Series, BMW 5 Series, and BMW 7 Series vehicles produced in 2012 through 2018 allows an attack by an attacker who has direct physical access...
CVE-2018-9311
The Telematics Control Unit aka Telematic Communication Box or TCB, when present on BMW vehicles produced in 2012 through 2018, allows a remote attack via a cellular network...
The Slingshot APT FAQ
While analysing an incident which involved a suspected keylogger, we identified a malicious library able to interact with a virtual file system, which is usually the sign of an advanced APT actor. This turned out to be a malicious loader internally named 'Slingshot', part of a new, and highly...
[security bulletin] HPSBMU02783 SSRT100806 rev.1 - HP Network Node Manager i (NNMi) for HP-UX, Linux, Solaris, and Windows, Remote Cross Site Scripting (XSS)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03343724 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03343724 Version: 1 HPSBMU02783...
CVE-2012-2018
HP NNMi is vulnerable to a remote Cross-Site Scripting (XSS) in NNMi versions 8.x, 9.0x and 9.1x, allowing injection of arbitrary scripts via unspecified vectors. The CVSS v2.0 base score is 4.3 (MEDIUM) with Network attack vector, no authentication required, but with partial integrity impact. HP...