Lucene search
+L

159 matches found

cnnvd
cnnvd
added 2025/08/06 12:0 a.m.6 views

Kenwood DMX958XR 操作系统命令注入漏洞

The Kenwood DMX958XR is an in-car infotainment system from Kenwood. The Kenwood DMX958XR suffers from a command injection vulnerability that can be exploited by an attacker to execute code in a root context...

6.8CVSS8AI score0.009EPSS
Exploits0References1
cnnvd
cnnvd
added 2025/08/06 12:0 a.m.5 views

Kenwood DMX958XR 操作系统命令注入漏洞

The Kenwood DMX958XR is an in-car infotainment system from Kenwood. The Kenwood DMX958XR suffers from a command injection vulnerability that can be exploited by an attacker to execute code in a root context...

6.8CVSS8AI score0.00929EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2025/07/07 12:0 a.m.12 views

PT-2025-29082

Name of the Vulnerable Software and Affected Versions: OpenSynergy BlueSDK versions through 6.x Description: The OpenSynergy BlueSDK Bluetooth stack contains a flaw due to incorrect handling of a network packet header and an incorrect variable used as a function argument. This can allow a remote...

7.5CVSS6.5AI score0.00662EPSS
Exploits1References15
redhatcve
redhatcve
added 2025/06/30 4:26 p.m.6 views

CVE-2023-28910

A specific flaw exists within the Bluetooth stack of the MIB3 infotainment system. The issue results from the disabled abortion flag eventually leading to bypassing assertion functions. The vulnerability was originally discovered in Skoda Superb III car with MIB3 infotainment unit OEM part number...

8CVSS6.3AI score0.00345EPSS
Exploits0References1
nvd
nvd
added 2025/06/28 4:15 p.m.7 views

CVE-2023-28903

An integer overflow in the image processing binary of the MIB3 infotainment unit allows an attacker with local access to the vehicle to cause a denial-of-service of the infotainment system...

3.3CVSS0.00207EPSS
Exploits0References3
cnnvd
cnnvd
added 2025/06/28 12:0 a.m.5 views

Volkswagen MIB3 Infotainment 安全漏洞

Volkswagen MIB3 Infotainment is an infotainment system on a vehicle from Volkswagen Germany. A security vulnerability exists in the Volkswagen MIB3 Infotainment that stems from a lack of memory isolation between CPU cores, which could allow an attacker to compromise the CPU core responsible for C...

6.7CVSS6.6AI score0.00193EPSS
Exploits0References4
cnnvd
cnnvd
added 2025/06/28 12:0 a.m.9 views

Volkswagen MIB3 Infotainment 安全漏洞

Volkswagen MIB3 Infotainment is an infotainment system on a vehicle from Volkswagen Germany. A security vulnerability exists in Volkswagen MIB3 Infotainment that stems from a lack of privilege separation in a proprietary inter-process communication mechanism, which could allow an attacker to bypa...

6.3CVSS9.2AI score0.0018EPSS
Exploits0References4
cnnvd
cnnvd
added 2025/06/28 12:0 a.m.4 views

Volkswagen MIB3 Infotainment 安全漏洞

Volkswagen MIB3 Infotainment is an infotainment system on a vehicle from Volkswagen Germany. A security vulnerability exists in the Volkswagen MIB3 Infotainment that stems from a lack of proper validation of user-supplied data in the Bluetooth stack, which could result in an integer overflow when...

5.4CVSS6.9AI score0.0031EPSS
Exploits0References4
redhatcve
redhatcve
added 2025/05/23 5:38 a.m.5 views

CVE-2023-26245

An issue was discovered in the Hyundai Gen5WL in-vehicle infotainment system AEEPEEUR.S5WL001.001.211214. The AppUpgrade binary file, which is used during the firmware installation process, can be modified by an attacker to bypass the version check in order to install any firmware version e.g.,...

7.8CVSS6.9AI score0.00333EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/23 5:30 a.m.5 views

CVE-2023-28896

Access to critical Unified Diagnostics Services UDS of the Modular Infotainment Platform 3 MIB3 infotainment is transmitted via Controller Area Network CAN bus in a form that can be easily decoded by attackers with physical access to the vehicle. Vulnerability discovered on Škoda Superb III 3V3 -...

3.3CVSS6.7AI score0.0014EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 3:38 a.m.6 views

CVE-2023-28885

The MyLink infotainment system build 2021.3.26 in General Motors Chevrolet Equinox 2021 vehicles allows attackers to cause a denial of service temporary failure of Media Player functionality via a crafted MP3 file...

6.8CVSS6.7AI score0.00358EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 3:27 a.m.5 views

CVE-2023-26246

An issue was discovered in the Hyundai Gen5WL in-vehicle infotainment system AEEPEEUR.S5WL001.001.211214. The AppUpgrade binary file, which is used during the firmware installation process, can be modified by an attacker to bypass the digital signature check. This indirectly allows an attacker to...

7.8CVSS7AI score0.00333EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/22 9:20 p.m.8 views

CVE-2021-23907

An issue was discovered in the Headunit NTG6 in the MBUX Infotainment System on Mercedes-Benz vehicles through 2021. The count in MultiSvGet, GetAttributes, and MultiSvSet is not checked in the HiQnet Protocol, leading to remote code execution...

9.8CVSS7.5AI score0.02362EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/22 7:19 p.m.14 views

CVE-2021-23908

An issue was discovered in the Headunit NTG6 in the MBUX Infotainment System on Mercedes-Benz vehicles through 2021. A type confusion issue affects MultiSvSetAttributes in the HiQnet Protocol, leading to remote code execution...

9.8CVSS7.5AI score0.02362EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/22 7:19 p.m.9 views

CVE-2021-23909

An issue was discovered in HERMES 2.1 in the MBUX Infotainment System on Mercedes-Benz vehicles through 2021. The SH2 MCU allows remote code execution...

9.8CVSS7.6AI score0.02361EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/22 6:23 p.m.12 views

CVE-2021-23906

An issue was discovered in the Headunit NTG6 in the MBUX Infotainment System on Mercedes-Benz vehicles through 2021. A Message Length is not checked in the HiQnet Protocol, leading to remote code execution...

6.8CVSS7.5AI score0.00804EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/22 4:36 p.m.12 views

CVE-2020-28656

The update functionality of the Discover Media infotainment system in Volkswagen Polo 2019 vehicles allows physically proximate attackers to execute arbitrary code because some unsigned parts of a metainfo file are parsed, which can cause attacker-controlled files to be written to the infotainmen...

7.2CVSS7.9AI score0.00334EPSS
Exploits1
cnnvd
cnnvd
added 2025/02/13 12:0 a.m.4 views

Mercedes-Benz NTG 安全漏洞

Mercedes-Benz NTG is an automobile from Mercedes-Benz Germany. A security vulnerability exists in Mercedes-Benz NTG 6 that originates from a heap buffer overflow in the User-Data import/export function. An attacker exploiting this vulnerability could cause the User-Data service to crash...

4.6CVSS7.7AI score0.00331EPSS
Exploits0References1
bdu_fstec
bdu_fstec
added 2025/01/21 12:0 a.m.7 views

The vulnerability of the import/export function of the UserData service in the Mercedes-Benz MBUX multimedia system allows a perpetrator to trigger a service failure.

The vulnerability of the import/export function of the UserData service in the Mercedes-Benz MBUX multimedia system is related to errors in data type mixing. Exploiting this vulnerability can allow attackers to cause service failures...

5.5CVSS7.2AI score0.00327EPSS
Exploits0References4
osv
osv
added 2024/11/22 10:15 p.m.3 views

CVE-2024-8355

Visteon Infotainment System DeviceManager iAP Serial Number SQL Injection Vulnerability. This vulnerability allows physically present attackers to execute arbitrary code on affected installations of Visteon Infotainment system. Authentication is not required to exploit this vulnerability. The...

6.8CVSS7.7AI score0.00564EPSS
Exploits0References1
Rows per page
Query Builder