Lucene search
+L

223 matches found

RedhatCVE
RedhatCVE
added 2025/02/15 12:28 a.m.6 views

CVE-2023-34406

An issue was discovered on Mercedes Benz NTG 6. A possible integer overflow exists in the user data import/export function of NTG New Telematics Generation 6 head units. To perform this attack, local access to USB interface of the car is needed. With prepared data, an attacker can cause the...

3.3CVSS6.8AI score0.00217EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/02/15 12:25 a.m.7 views

CVE-2024-37603

An issue was discovered in Mercedes Benz NTG New Telematics Generation 6. A possible type confusion exists in the user data import/export function of NTG 6 head units. To perform this attack, local access to the USB interface of the car is needed. With prepared data, an attacker can cause the...

4.6CVSS6.5AI score0.00327EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/15 12:24 a.m.6 views

CVE-2024-37601

An issue was discovered in Mercedes Benz NTG New Telematics Generation 6. A possible heap buffer overflow exists in the user data import/export function of NTG 6 head units. To perform this attack, local access to the USB interface of the car is needed. With prepared data, an attacker can cause t...

4.6CVSS7AI score0.00331EPSS
Exploits0References1
OSV
OSV
added 2025/02/13 11:15 p.m.3 views

CVE-2024-37603

An issue was discovered in Mercedes Benz NTG New Telematics Generation 6. A possible type confusion exists in the user data import/export function of NTG 6 head units. To perform this attack, local access to the USB interface of the car is needed. With prepared data, an attacker can cause the...

4.6CVSS5.8AI score0.00327EPSS
Exploits0References1
NVD
NVD
added 2025/02/13 11:15 p.m.12 views

CVE-2024-37601

An issue was discovered in Mercedes Benz NTG New Telematics Generation 6. A possible heap buffer overflow exists in the user data import/export function of NTG 6 head units. To perform this attack, local access to the USB interface of the car is needed. With prepared data, an attacker can cause t...

4.6CVSS0.00331EPSS
Exploits0References1
NVD
NVD
added 2025/02/13 11:15 p.m.17 views

CVE-2024-37603

An issue was discovered in Mercedes Benz NTG New Telematics Generation 6. A possible type confusion exists in the user data import/export function of NTG 6 head units. To perform this attack, local access to the USB interface of the car is needed. With prepared data, an attacker can cause the...

4.6CVSS0.00327EPSS
Exploits0References1
OSV
OSV
added 2025/02/13 11:15 p.m.7 views

CVE-2024-37601

An issue was discovered in Mercedes Benz NTG New Telematics Generation 6. A possible heap buffer overflow exists in the user data import/export function of NTG 6 head units. To perform this attack, local access to the USB interface of the car is needed. With prepared data, an attacker can cause t...

4.6CVSS6.1AI score
Exploits0References1
OSV
OSV
added 2025/02/13 11:15 p.m.7 views

CVE-2023-34406

An issue was discovered on Mercedes Benz NTG 6. A possible integer overflow exists in the user data import/export function of NTG New Telematics Generation 6 head units. To perform this attack, local access to USB interface of the car is needed. With prepared data, an attacker can cause the...

3.3CVSS7.2AI score0.00217EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/02/13 12:0 a.m.14 views

CVE-2024-37601

An issue was discovered in Mercedes Benz NTG New Telematics Generation 6. A possible heap buffer overflow exists in the user data import/export function of NTG 6 head units. To perform this attack, local access to the USB interface of the car is needed. With prepared data, an attacker can cause t...

0.00331EPSS
Exploits0References1
CVE
CVE
added 2025/02/13 12:0 a.m.60 views

CVE-2024-37603

CVE-2024-37603 affects Mercedes-Benz NTG6 head units, with a type-confusion vulnerability in the USB-based UserData import/export workflow. Exploitation requires physical access to the vehicle’s USB interface; an attacker can craft data that causes the UserData service to crash, after which the s...

4.6CVSS6.6AI score0.00327EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2025/02/13 12:0 a.m.91 views

CVE-2023-34406

CVE-2023-34406 affects Mercedes‑Benz NTG 6 head units. The issue is an integer overflow in the UserData import/export function of NTG 6. Exploitation requires local access via USB; with prepared data, a attacker can crash the User-Data service, after which the service restarts automatically. The ...

3.3CVSS6.8AI score0.00217EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/02/07 12:0 a.m.6 views

IBL Software Engineering Visual Weather 安全漏洞

IBL Software Engineering Visual Weather is a visual weather application from IBL Software Engineering. A security vulnerability exists in IBL Software Engineering Visual Weather that stems from a misconfiguration of the PDS component, which allows remote execution of arbitrary Python code...

9.5CVSS7.1AI score0.00843EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/01/20 12:0 a.m.14 views

PT-2025-1392 · Mercedes Benz · Ntg 6

Name of the Vulnerable Software and Affected Versions: Mercedes Benz NTG 6 affected versions not specified Description: An issue exists in the user data import/export function of NTG 6 head units, where a possible integer overflow can occur. To exploit this, an attacker needs local access to the...

3.3CVSS7.7AI score0.00217EPSS
Exploits0References6
CNNVD
CNNVD
added 2024/11/15 12:0 a.m.4 views

HPE Cray Data Virtualization Service(DVS) 安全漏洞

HPE Cray Data Virtualization Service is a distributed network service from HPE. A security vulnerability exists in HPE Cray Data Virtualization Service DVS that stems from vulnerability to unauthorized local or clustered access...

5.5CVSS6.5AI score0.00143EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/06/24 12:0 a.m.9 views

The vulnerability of the Windows operating system’s streaming data transmission service allows attackers to enhance their privileges.

The vulnerability of the Windows operating system’s streaming data transmission service is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...

7.8CVSS7.6AI score0.08038EPSS
Exploits0References3
OSV
OSV
added 2024/05/03 3:15 a.m.3 views

CVE-2023-44417

D-Link DAP-2622 DDP Set IPv4 Address Auth Password Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this...

8.8CVSS6.3AI score0.0075EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/04/22 12:0 a.m.7 views

PT-2024-12700 · Tcl +1 · Tcl 30Z +2

Name of the Vulnerable Software and Affected Versions: TCL 30Z versions v5.2120.02.12008.1.T through v5.2120.02.12008.2.T TCL 10L version v3.2014.12.1012.B Description: The issue concerns certain software builds for TCL Android devices that contain a vulnerable pre-installed app. This app relies ...

7.8CVSS6.9AI score0.00183EPSS
Exploits0References4
Openbugbounty
Openbugbounty
added 2024/04/16 1:56 p.m.18 views

reshare.ukdataservice.ac.uk Cross Site Scripting vulnerability OBB-3918479

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
CNNVD
CNNVD
added 2024/02/28 12:0 a.m.5 views

Couchbase Server Security Vulnerability

Couchbase Server is a distributed, open source NoSQL non-relational database from Couchbase, Inc. that supports data querying, full-text searching, and active global replication. A security vulnerability exists in Couchbase Server 7.2.2 and earlier versions, which originates from a user with data...

6.5CVSS6.5AI score0.00663EPSS
Exploits0References4
OSV
OSV
added 2023/09/12 2:15 a.m.4 views

CVE-2023-41368

The OData service of the S4 HANA Manage checkbook apps - versions 102, 103, 104, 105, 106, 107, allows an attacker to change the checkbook name by simulating an update OData call...

5.3CVSS6.1AI score0.00367EPSS
Exploits0References2
Rows per page
Query Builder