13 matches found
CVE-2024-37603
An issue was discovered in Mercedes Benz NTG New Telematics Generation 6. A possible type confusion exists in the user data import/export function of NTG 6 head units. To perform this attack, local access to the USB interface of the car is needed. With prepared data, an attacker can cause the...
CVE-2024-37600
An issue was discovered in Mercedes Benz NTG New Telematics Generation 6 through 2021. A possible stack buffer overflow in the Service Broker service affects NTG 6 head units. To perform this attack, physical access to Ethernet pins of the head unit base board is needed. With a static IP address,...
CVE-2024-37600
An issue was discovered in Mercedes Benz NTG New Telematics Generation 6 through 2021. A possible stack buffer overflow in the Service Broker service affects NTG 6 head units. To perform this attack, physical access to Ethernet pins of the head unit base board is needed. With a static IP address,...
CVE-2024-37601
An issue was discovered in Mercedes Benz NTG New Telematics Generation 6. A possible heap buffer overflow exists in the user data import/export function of NTG 6 head units. To perform this attack, local access to the USB interface of the car is needed. With prepared data, an attacker can cause t...
CVE-2024-37601
An issue was discovered in Mercedes Benz NTG New Telematics Generation 6. A possible heap buffer overflow exists in the user data import/export function of NTG 6 head units. To perform this attack, local access to the USB interface of the car is needed. With prepared data, an attacker can cause t...
CVE-2023-34406
An issue was discovered on Mercedes Benz NTG 6. A possible integer overflow exists in the user data import/export function of NTG New Telematics Generation 6 head units. To perform this attack, local access to USB interface of the car is needed. With prepared data, an attacker can cause the...
CVE-2024-37600
An issue was discovered in Mercedes Benz NTG New Telematics Generation 6 through 2021. A possible stack buffer overflow in the Service Broker service affects NTG 6 head units. To perform this attack, physical access to Ethernet pins of the head unit base board is needed. With a static IP address,...
CVE-2024-37602
An issue was discovered in Mercedes Benz NTG New Telematics Generation 6 through 2021. A possible NULL pointer dereference in the Apple Car Play function affects NTG 6 head units. To perform this attack, physical access to Ethernet pins of the head unit base board is needed. With a static IP...
Mercedes-Benz NTG 安全漏洞
Mercedes-Benz NTG is an automobile from Mercedes-Benz Germany. A security vulnerability exists in Mercedes-Benz NTG 6 that stems from insufficient file checking when importing or exporting profile settings via USB. An attacker could exploit the vulnerability to write arbitrary files...
Mercedes-Benz NTG 安全漏洞
Mercedes-Benz NTG is an automobile from Mercedes-Benz Germany. A security vulnerability exists in Mercedes-Benz NTG that originates from a service crash when importing or exporting profile settings via USB...
CVE-2024-37601
CVE-2024-37601 : Mercedes-Benz NTG (New Telematics Generation) 6 contains a heap buffer overflow in the UserData/UD2 decoding path used for import/export via USB. The vulnerability requires local USB access to trigger, and exploitation can crash the UserData service, with the system subsequently ...
CVE-2024-37602
CVE-2024-37602 affects Mercedes-Benz NTG (New Telematics Generation) 6 through 2021 head units. The vulnerability is a NULL pointer dereference in the Apple CarPlay function that can crash the Car Play service. Exploitation requires physical access to Ethernet pins on the head unit base board; wi...
CVE-2024-37601
An issue was discovered in Mercedes Benz NTG New Telematics Generation 6. A possible heap buffer overflow exists in the user data import/export function of NTG 6 head units. To perform this attack, local access to the USB interface of the car is needed. With prepared data, an attacker can cause t...