Lucene search
+L

115 matches found

OSV
OSV
added 2022/06/20 8:19 p.m.6 views

MAL-2022-91 Malicious code in @audi-cct/teaser-feature-app (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c4bf5b9b172fa13a666e247c29ea5993af008cf7b6371aa719add1ac288724f8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
Openbugbounty
Openbugbounty
added 2022/02/16 5:34 a.m.18 views

forms.audi.com.au Cross Site Scripting vulnerability OBB-2374039

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2021/10/25 1:35 p.m.12 views

audi-konfuzius-institut-ingolstadt.de Improper Access Control vulnerability OBB-2205245

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

0.1AI score
Exploits0
Malwarebytes
Malwarebytes
added 2021/06/21 10:2 a.m.49 views

A week in security (June 14 – June 20)

Last week on Malwarebytes Labs: How to delete your Instagram account. Working from home? You’re probably being spied on. Another one bites the dust: Avaddon ransomware group shuts down operation. Patch now! Apple fixes in-the-wild iPhone vulnerabilities. Windows 10 to retire in four years or 52...

6.9AI score
Exploits0
ThreatPost
ThreatPost
added 2021/06/14 3:12 p.m.59 views

Volkswagen Vendor Exposed Data of 3.3m Drivers

One of Volkswagen’s vendors left one of its systems open for nearly two years, exposing the personal data of 3.3 million customers – nearly all of them owners or wannabe owners of the automaker’s luxury brand of Audis – Volkswagen America said last week. The breach took place between August 2019...

6.4AI score
Exploits0References10
NVD
NVD
added 2020/11/11 3:15 p.m.19 views

CVE-2020-27524

On Audi A7 MMI 2014 vehicles, the Bluetooth stack in Audi A7 MMI Multiplayer with version N+RCNAUP0395 mishandles %x and %s format string specifiers in a device name. This may lead to memory content leaks and potentially crash the services...

7.1CVSS6.8AI score0.01162EPSS
Exploits1References3
OSV
OSV
added 2020/11/11 3:15 p.m.4 views

CVE-2020-27524

On Audi A7 MMI 2014 vehicles, the Bluetooth stack in Audi A7 MMI Multiplayer with version N+RCNAUP0395 mishandles %x and %s format string specifiers in a device name. This may lead to memory content leaks and potentially crash the services...

7.1CVSS5.8AI score0.01162EPSS
Exploits1References3
Prion
Prion
added 2020/11/11 3:15 p.m.15 views

Format string

On Audi A7 MMI 2014 vehicles, the Bluetooth stack in Audi A7 MMI Multiplayer with version N+RCNAUP0395 mishandles %x and %s format string specifiers in a device name. This may lead to memory content leaks and potentially crash the services...

4.8CVSS6.8AI score0.01162EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2020/11/11 2:20 p.m.37 views

CVE-2020-27524

The CVE-2020-27524 entry concerns the Bluetooth stack in the Audi A7 MMI 2014 family, specifically the MMI Multiplayer variant labeled N+R_CN_AU_P0395. The underlying issue is a mishandling of %x and %s format string specifiers in a device name, which can lead to memory content leaks and may caus...

7.1CVSS6.8AI score0.01162EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2020/11/11 2:20 p.m.16 views

CVE-2020-27524

On Audi A7 MMI 2014 vehicles, the Bluetooth stack in Audi A7 MMI Multiplayer with version N+RCNAUP0395 mishandles %x and %s format string specifiers in a device name. This may lead to memory content leaks and potentially crash the services...

6.9AI score0.01162EPSS
Exploits1References3
Openbugbounty
Openbugbounty
added 2020/10/06 5:42 p.m.5 views

audi-a3.cbct.com.tw Cross Site Scripting vulnerability OBB-1386151

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2020/02/20 1:55 a.m.10 views

collaboration.msi.audi.com Improper Access Control vulnerability

Security Researcher Nep13371998 Helped patch 562 vulnerabilities Received 4 Coordinated Disclosure badges Received 7 recommendations , a holder of 4 badges for responsible and coordinated disclosure, found a security vulnerability affecting collaboration.msi.audi.com website and its users...

0.2AI score
Exploits0
CNVD
CNVD
added 2018/04/02 12:0 a.m.3 views

Audi Travel App has a Bursting Vulnerability

Audi Travel App is a travel service software. Audi Travel APP is vulnerable to a blasting vulnerability. An attacker can log in to any user account and perform unauthorized operations by grabbing packets and bursting them...

6.9AI score
Exploits0
Openbugbounty
Openbugbounty
added 2018/03/31 12:52 a.m.7 views

erwin.audi.com XSS vulnerability

Open Bug Bounty ID: OBB-594280 Description| Value ---|--- Affected Website:| erwin.audi.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
Openbugbounty
Openbugbounty
added 2018/01/03 7:19 p.m.10 views

ak-edit.audi.de XSS vulnerability

Open Bug Bounty ID: OBB-483825 Description| Value ---|--- Affected Website:| ak-edit.audi.de Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/10/19 12:16 p.m.7 views

sixt.com.au XSS vulnerability

Vulnerable URL: https://www.sixt.com.au/gfx/leasing/firmenwagen/angebote/audi-tt.swf?motxt=Jetzt%2520informieren!=javascript:alertOPENBUGBOUNTY Details: Description| Value ---|--- Patched:| No Latest check for patch:| 18.01.2018 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed...

6.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/10/19 12:15 p.m.9 views

sixt.no XSS vulnerability

Vulnerable URL: https://www.sixt.no/gfx/leasing/firmenwagen/angebote/audi-tt.swf?motxt=Jetzt%2520informieren!=javascript:alert%60OPENBUGBOUNTY%60 Details: Description| Value ---|--- Patched:| No Latest check for patch:| 18.01.2018 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed...

6.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/10/19 12:15 p.m.11 views

sixt.se XSS vulnerability

Vulnerable URL: https://www.sixt.se/gfx/leasing/firmenwagen/angebote/audi-tt.swf?motxt=Jetzt%2520informieren!=javascript:alert%60OPENBUGBOUNTY%60 Details: Description| Value ---|--- Patched:| No Latest check for patch:| 18.01.2018 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed...

6.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/10/19 12:15 p.m.13 views

sixt.ro XSS vulnerability

Vulnerable URL: https://www.sixt.ro/gfx/leasing/firmenwagen/angebote/audi-tt.swf?motxt=Jetzt%2520informieren!=javascript:alert%60OPENBUGBOUNTY%60 Details: Description| Value ---|--- Patched:| No Latest check for patch:| 18.01.2018 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed...

6.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/10/19 12:14 p.m.10 views

sixt.pl XSS vulnerability

Vulnerable URL: https://www.sixt.pl/gfx/leasing/firmenwagen/angebote/audi-tt.swf?motxt=Jetzt%2520informieren!=javascript:alert%60OPENBUGBOUNTY%60 Details: Description| Value ---|--- Patched:| No Latest check for patch:| 18.01.2018 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed...

6.3AI score
Exploits0
Rows per page
Query Builder