Yokogawa A2FV86 Field Control Unit Detection

Binary data 759876.prm...

Yokogawa PFCS Field Control Unit Detection

Binary data 761125.prm...

Yokogawa A2FV70 Field Control Unit Detection

Binary data 760250.prm...

Automotive theft affects shipping security

Cars and ships – there’s not that much in common with two areas that we carry out a lot of research in to. One uses CAN for safety critical controls, the other uses serial and +/- 10V. Yet, security of the two sectors is linked through vehicle theft and fraud: Most modern vehicles have telematic...

BMW Automotive Telematics Control Unit Design Vulnerability

BMW vehicles etc. are automotive products of the German company BMW Bayerische Motoren Werke AG.Telematics Control Unit Telematic Communication Box or TCB is one of the automatic transmission control units used. A security vulnerability exists in the Telematics Control Unit on BMW vehicles models...

BMW Automotive Telematics Control Unit Design Vulnerability (CNVD-2018-11274)

BMW vehicles etc. are automotive products of the German company BMW Bayerische Motoren Werke AG.Telematics Control Unit Telematic Communication Box or TCB is one of the automatic transmission control units used. A security vulnerability exists in the Telematics Control Unit in BMW vehicles vehicl...

Design/Logic Flaw

The Telematics Control Unit aka Telematic Communication Box or TCB, when present on BMW vehicles produced in 2012 through 2018, allows a remote attack via a cellular network...

CVE-2018-9311

The Telematics Control Unit aka Telematic Communication Box or TCB, when present on BMW vehicles produced in 2012 through 2018, allows a remote attack via a cellular network...

CVE-2018-9318

The Telematics Control Unit aka Telematic Communication Box or TCB, when present on BMW vehicles produced in 2012 through 2018, allows a remote attack via a cellular network...

CVE-2018-9318

The Telematics Control Unit aka Telematic Communication Box or TCB, when present on BMW vehicles produced in 2012 through 2018, allows a remote attack via a cellular network...

CVE-2018-9318

CVE-2018-9318 concerns BMW vehicles (2012–2018) with the Telematics Control Unit (TCB). The issue allows a remote attack over a cellular network by exploiting the TCB, with NVD indicating a critical impact (CVSSv3: 9.8, network, no user interaction, high confidentiality/integrity/availability). T...

CVE-2018-9311

The Telematics Control Unit aka Telematic Communication Box or TCB, when present on BMW vehicles produced in 2012 through 2018, allows a remote attack via a cellular network...

CVE-2018-9311

The CVE-2018-9311 vulnerability affects the Telematics Control Unit (TCB/Telematics Communication Box) used in BMW vehicles produced from 2012–2018. Affected component: TCB within the vehicle’s telematics system. Described impact: allows a remote attack via a cellular network, with CVSS v3.0 base...

Chinese Hackers Find Over a Dozen Vulnerabilities in BMW Cars

Chinese security researchers have discovered more than a dozen vulnerabilities in the onboard compute units of BMW cars, some of which can be exploited remotely to compromise a vehicle. The security flaws have been discovered during a year-long security audit conducted by researchers from Keen...

Ubuntu 14.04 LTS : Linux kernel (Xenial HWE) vulnerabilities (USN-3619-2)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3619-2 advisory. USN-3619-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the Linux Hardware Enableme...

Ubuntu 17.10 : linux-raspi2 vulnerabilities (USN-3617-3)

It was discovered that a race condition leading to a use-after-free vulnerability existed in the ALSA PCM subsystem of the Linux kernel. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2017-0861 It was discovered that a...

CVE-2018-7298

In /usr/local/etc/config/addons/mh/loopupd.sh on eQ-3 AG HomeMatic CCU2 2.29.22 devices, software update packages are downloaded via the HTTP protocol, which does not provide any cryptographic protection of the downloaded contents. An attacker with a privileged network position which could be...

CVE-2017-9647

A Stack-Based Buffer Overflow issue was discovered in the Continental AG Infineon S-Gold 2 PMB 8876 chipset on BMW several models produced between 2009-2010, Ford a limited number of P-HEV vehicles, Infiniti 2013 JX35, Infiniti 2014-2016 QX60, Infiniti 2014-2016 QX60 Hybrid, Infiniti 2014-2015...

PT-2017-19088 · Infineon · Infineon S-Gold 2

Name of the Vulnerable Software and Affected Versions: Infineon S-Gold 2 PMB 8876 chipset versions used in various vehicle models produced between 2009-2016 Description: An issue with improper restriction of operations within the bounds of a memory buffer was found. This issue may allow an attack...

Continental TCU Stack Buffer Overflow Vulnerability

The TCU is a 2G modem commonly used in modern automobiles manufactured by Continental AG for transmitting data that enables communication between the car and remote management tools such as web panels and mobile applications. A stack buffer overflow vulnerability in the Continental TCU affects TC...