40 matches found
vehicle-subsystem-security-assessment
🚗 End-to-end security assessment of vehicle subsystems ! Me...
CVE-2025-32063
There is a misconfiguration vulnerability inside the Infotainment ECU manufactured by BOSCH. The vulnerability happens during the startup phase of a specific systemd service, and as a result, the following developer features will be activated: the disabled firewall and the launched SSH server...
CVE-2022-33216
Transient Denial-of-service in Automotive due to improper input validation while parsing ELF file...
CVE-2022-33307
Memory Corruption due to double free in automotive when a bad HLOS address for one of the lists to be mapped is passed...
Android Automotive OS Update Bulletin—January 2026Stay organized with collectionsSave and categorize content based on your preferences.
The Android Automotive OS AAOS Update Bulletin contains details of security vulnerabilities affecting the Android Automotive OS platform. The full AAOS update comprises the security patch level of 2026-01-05 or later from the January 2026 Android Security Bulletin in addition to all issues in thi...
EUVD-2018-17644
Malware in sbrugna...
EUVD-2017-9453
Malware in sbrugna...
EUVD-2017-17238
Malware in sbrugna...
Enhancing Automotive Security with a Hybrid Approach Towards Universal Intrusion Detection System
Security measures are essential in the automotive industry to detect intrusions in-vehicle networks. However, developing a one-size-fits-all Intrusion Detection System IDS is challenging because each vehicle has unique data profiles. This is due to the complex and dynamic nature of the data...
EUVD-2023-37226
Malicious code in bioql PyPI...
EUVD-2022-36259
Malicious code in bioql PyPI...
EUVD-2022-36350
Malicious code in bioql PyPI...
EUVD-2022-30368
Malicious code in bioql PyPI...
EUVD-2022-27237
Malicious code in bioql PyPI...
EUVD-2022-36261
Malicious code in bioql PyPI...
PT-2025-40346
Vulnerabilities in automotive Memory Protection Unit MPU CVE-2023-48010 and CVE-2024-33882 2024 https://t.co/6uScL3wIzO infosec https://t.co/X5CzbiqShT...
STAF: Leveraging LLMs for Automated Attack Tree-Based Security Test Generation
In modern automotive development, security testing is critical for safeguarding systems against increasingly advanced threats. Attack trees are widely used to systematically represent potential attack vectors, but generating comprehensive test cases from these trees remains a labor-intensive,...
CVE-2025-21422 Cryptographic Issues in Automotive
Cryptographic issue while processing crypto API calls, missing checks may lead to corrupted key usage or IV reuses...
CVE-2023-28907 A lack of access restrictions on internal memory regions
There is no memory isolation between CPU cores of the MIB3 infotainment. This fact allows an attacker with access to the main operating system to compromise the CPU core responsible for CAN message processing. The vulnerability was originally discovered in Skoda Superb III car with MIB3...
CVE-2023-29113 A lack of access control in custom IPC mechanism
The MIB3 infotainment unit used in Skoda and Volkswagen vehicles does not incorporate any privilege separation for the proprietary inter-process communication mechanism, leaving attackers with presence in the system an ability to undermine access control restrictions implemented at the operating...