CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-12112

Malicious code in bioql PyPI...

8.1CVSS6.6AI score0.00168EPSS

RedhatCVE•added 2025/08/11 1:25 p.m.•3 views

CVE-2025-7020

An incorrect encryption implementation vulnerability exists in the system log dump feature of BYD's DiLink 3.0 OS e.g. in the model ATTO3. An attacker with physical access to the vehicle can bypass the encryption of log dumps on the In-Vehicle Infotainment IVI unit's storage. This allows the...

6.5CVSS6.5AI score0.00208EPSS

Cvelist•added 2025/08/09 12:42 p.m.•7 views

CVE-2025-7020 BYD DiLink OS Incorrect encryption Implementation of system log dumps

5.1CVSS0.00027EPSS

Vulnrichment•added 2025/08/09 12:42 p.m.•3 views

CVE-2025-7020 BYD DiLink OS Incorrect encryption Implementation of system log dumps

5.1CVSS6.5AI score0.00027EPSS

CNNVD•added 2025/08/09 12:0 a.m.•1 views

BYD DiLink 安全漏洞

BYD DiLink is an intelligent Internet connection system from China's BYD BYD. A security vulnerability exists in BYD DiLink 3.0 OS, which stems from improper implementation of encryption for the system log dump function, which could lead to sensitive data leakage...

5.1CVSS6.6AI score0.00027EPSS

Positive Technologies•added 2025/08/09 12:0 a.m.•4 views

PT-2025-32437 · Byd · Byd Dilink 3.0 Os

Name of the Vulnerable Software and Affected Versions: BYD DiLink 3.0 OS affected versions not specified Description: An incorrect encryption implementation exists in the system log dump feature. An attacker with physical access to the vehicle can bypass the encryption of log dumps on the...

5.1CVSS6.6AI score0.00027EPSS

Exploits0References5

RedhatCVE•added 2025/05/23 6:51 a.m.•2 views

CVE-2024-46442

An issue in the BYD Dilink Headunit System v3.0 to v4.0 allows attackers to bypass authentication via a bruteforce attack...

9.8CVSS7.1AI score0.00351EPSS

NVD•added 2025/04/23 8:15 p.m.•10 views

CVE-2025-28169

BYD QIN PLUS DM-i Dilink OS v3.013.1.7.2204050.1 to v3.013.1.7.2312290.10 was discovered to cend broadcasts to the manufacturer's cloud server unencrypted, allowing attackers to execute a man-in-the-middle attack...

8.1CVSS0.00168EPSS

CVE•added 2025/04/23 12:0 a.m.•49 views

CVE-2025-28169

BYD QIN PLUS DM-i Dilink OS versions v3.0_13.1.7.2204050.1 through v3.0_13.1.7.2312290.1_0 send broadcasts to the manufacturer’s cloud server unencrypted. This enables a network-level attacker to perform a man-in-the-middle attack, compromising confidentiality, integrity, and availability. The CV...

8.1CVSS7.6AI score0.00168EPSS

Positive Technologies•added 2025/04/23 12:0 a.m.•3 views

PT-2025-17668 · Byd · Byd Qin Plus Dm-I Dilink Os

Name of the Vulnerable Software and Affected Versions: BYD QIN PLUS DM-i Dilink OS versions v3.0 13.1.7.2204050.1 through v3.0 13.1.7.2312290.1 0 Description: The issue allows attackers to execute a man-in-the-middle attack because the affected software sends broadcasts to the manufacturer's clou...

8.1CVSS6.3AI score0.00168EPSS

Exploits0References9

CNNVD•added 2025/04/23 12:0 a.m.•3 views

BYD QIN PLUS DM-i with Dilink OS 安全漏洞

BYD QIN PLUS DM-i with Dilink OS is a plug-in hybrid electric sedan with Dilink OS from BYD China. A security vulnerability exists in BYD QIN PLUS DM-i with Dilink OS versions v3.013.1.7.2204050.1 through v3.013.1.7.2312290.10, which originates from an unencrypted send broadcast and could lead to...

8.1CVSS6.5AI score0.00168EPSS

Vulnrichment•added 2025/04/23 12:0 a.m.•4 views

CVE-2025-28169

7.4AI score0.00168EPSS

Cvelist•added 2025/04/23 12:0 a.m.•8 views

CVE-2025-28169

0.00168EPSS

CNNVD•added 2025/01/27 12:0 a.m.•2 views

BYD QIN PLUS DM-i with Dilink OS 安全漏洞

BYD QIN PLUS DM-i with Dilink OS is a plug-in hybrid electric sedan with Dilink OS from BYD China. A security vulnerability exists in BYD QIN PLUS DM-i with Dilink OS version 3.013.1.7.2204050.1, which originates from a faulty access control that allows an unauthorized attacker to access system...

6.5CVSS6.4AI score0.00208EPSS

Positive Technologies•added 2025/01/27 12:0 a.m.•3 views

PT-2025-3064 · Byd · Dilink Os

Name of the Vulnerable Software and Affected Versions: BYD QIN PLUS DM-i Dilink OS version 3.0 13.1.7.2204050.1 Description: The issue is related to incorrect access control, allowing unauthorized attackers to access system logcat logs. This could potentially expose sensitive information...

6.5CVSS6.8AI score0.00208EPSS

Exploits0References8

NVD•added 2024/12/10 7:15 p.m.•15 views

CVE-2024-46442

An issue in the BYD Dilink Headunit System v3.0 to v4.0 allows attackers to bypass authentication via a bruteforce attack...

9.8CVSS0.00351EPSS

Vulnrichment•added 2024/12/10 12:0 a.m.•7 views

CVE-2024-46442

An issue in the BYD Dilink Headunit System v3.0 to v4.0 allows attackers to bypass authentication via a bruteforce attack...

7.1AI score0.00351EPSS

Cvelist•added 2024/12/10 12:0 a.m.•12 views

CVE-2024-46442

An issue in the BYD Dilink Headunit System v3.0 to v4.0 allows attackers to bypass authentication via a bruteforce attack...

0.00351EPSS

CNNVD•added 2024/12/10 12:0 a.m.•3 views

BYD Dilink Headunit System 安全漏洞

BYD Dilink Headunit System is an in-vehicle operating system of the Chinese company BYD BYD. A security vulnerability exists in BYD Dilink Headunit System version v3.0 to v4.0. An attacker can exploit the vulnerability to bypass authentication via brute force attack...

9.8CVSS6.9AI score0.00351EPSS