CVE-2018-18203
The CVE-2018-18203 entry describes a vulnerability in Subaru StarLink Harman head units (2017–2019) where the update mechanism accepts modified QNX6 filesystem images due to a check that permits unsigned images. With physical access to the vehicle’s USB ports, an attacker could rewrite the head u...