Lucene search
K

20 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-38482

Malicious code in bioql PyPI...

4.9CVSS7.6AI score0.00463EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-4907

Malicious code in bioql PyPI...

4.6CVSS7.6AI score0.00321EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/02/15 12:29 a.m.7 views

CVE-2023-34403

Mercedes-Benz head-unit NTG6 has Ethernet pins on Base Board to connect module CSB. Attacker can connect to this pins and get access to internal network. A race condition can be acquired and attacker can spoof “UserData” with desirable file path and access it though backup on USB...

4.9CVSS6.7AI score0.00218EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/02/15 12:29 a.m.7 views

CVE-2023-34404

Mercedes-Benz head-unit NTG6 has Ethernet pins on Base Board to connect module CSB. Attacker can connect to these pins and get access to internal network. As a result, by accessing a specific port an attacker can send call request to all registered services in router and achieve command injection...

4.9CVSS7.3AI score0.00463EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/02/15 12:22 a.m.6 views

CVE-2024-37602

An issue was discovered in Mercedes Benz NTG New Telematics Generation 6 through 2021. A possible NULL pointer dereference in the Apple Car Play function affects NTG 6 head units. To perform this attack, physical access to Ethernet pins of the head unit base board is needed. With a static IP...

4.6CVSS6.1AI score0.00321EPSS
Exploits0References1
NVD
NVD
added 2025/02/13 11:15 p.m.10 views

CVE-2024-37602

An issue was discovered in Mercedes Benz NTG New Telematics Generation 6 through 2021. A possible NULL pointer dereference in the Apple Car Play function affects NTG 6 head units. To perform this attack, physical access to Ethernet pins of the head unit base board is needed. With a static IP...

4.6CVSS0.00321EPSS
Exploits0References1
NVD
NVD
added 2025/02/13 11:15 p.m.15 views

CVE-2024-37600

An issue was discovered in Mercedes Benz NTG New Telematics Generation 6 through 2021. A possible stack buffer overflow in the Service Broker service affects NTG 6 head units. To perform this attack, physical access to Ethernet pins of the head unit base board is needed. With a static IP address,...

6.8CVSS0.0033EPSS
Exploits0References1
OSV
OSV
added 2025/02/13 11:15 p.m.7 views

CVE-2023-34404

Mercedes-Benz head-unit NTG6 has Ethernet pins on Base Board to connect module CSB. Attacker can connect to these pins and get access to internal network. As a result, by accessing a specific port an attacker can send call request to all registered services in router and achieve command injection...

4.9CVSS5.8AI score0.00463EPSS
Exploits0References1
OSV
OSV
added 2025/02/13 11:15 p.m.3 views

CVE-2023-34403

Mercedes-Benz head-unit NTG6 has Ethernet pins on Base Board to connect module CSB. Attacker can connect to this pins and get access to internal network. A race condition can be acquired and attacker can spoof “UserData” with desirable file path and access it though backup on USB...

4.9CVSS5.8AI score0.00218EPSS
Exploits0References1
NVD
NVD
added 2025/02/13 11:15 p.m.12 views

CVE-2023-34403

Mercedes-Benz head-unit NTG6 has Ethernet pins on Base Board to connect module CSB. Attacker can connect to this pins and get access to internal network. A race condition can be acquired and attacker can spoof “UserData” with desirable file path and access it though backup on USB...

4.9CVSS0.00218EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/02/13 12:0 a.m.11 views

CVE-2023-34403

Mercedes-Benz head-unit NTG6 has Ethernet pins on Base Board to connect module CSB. Attacker can connect to this pins and get access to internal network. A race condition can be acquired and attacker can spoof “UserData” with desirable file path and access it though backup on USB...

0.00218EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/02/13 12:0 a.m.5 views

CVE-2024-37602

An issue was discovered in Mercedes Benz NTG New Telematics Generation 6 through 2021. A possible NULL pointer dereference in the Apple Car Play function affects NTG 6 head units. To perform this attack, physical access to Ethernet pins of the head unit base board is needed. With a static IP...

4.6CVSS6.2AI score0.00321EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/02/13 12:0 a.m.4 views

CVE-2023-34404

Mercedes-Benz head-unit NTG6 has Ethernet pins on Base Board to connect module CSB. Attacker can connect to these pins and get access to internal network. As a result, by accessing a specific port an attacker can send call request to all registered services in router and achieve command injection...

5.5AI score0.00463EPSS
Exploits0References1
CVE
CVE
added 2025/02/13 12:0 a.m.77 views

CVE-2023-34403

CVE-2023-34403 concerns Mercedes‑Benz head‑unit NTG6. Documented exposure arises from race-condition weaknesses accessed via the Base Board CSB Ethernet interface: an attacker can connect to exposed pins, gain access to the internal network, and potentially spoof the UserData path so that files r...

4.9CVSS6.8AI score0.00218EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2025/02/13 12:0 a.m.79 views

CVE-2023-34404

CVE-2023-34404 affects the Mercedes‑Benz head‑unit NTG6. Public analyses describe an attack surface exposed by internal network access (Ethernet test pins on the Base Board) enabling a crafted port call to registered services in the router, which can lead to command injection via the GCF/MoCCA/Ne...

4.9CVSS7.4AI score0.00463EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2025/02/13 12:0 a.m.57 views

CVE-2024-37602

CVE-2024-37602 affects Mercedes-Benz NTG (New Telematics Generation) 6 through 2021 head units. The vulnerability is a NULL pointer dereference in the Apple CarPlay function that can crash the Car Play service. Exploitation requires physical access to Ethernet pins on the head unit base board; wi...

4.6CVSS6.2AI score0.00321EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/02/13 12:0 a.m.9 views

CVE-2023-34404

Mercedes-Benz head-unit NTG6 has Ethernet pins on Base Board to connect module CSB. Attacker can connect to these pins and get access to internal network. As a result, by accessing a specific port an attacker can send call request to all registered services in router and achieve command injection...

0.00463EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/02/13 12:0 a.m.10 views

CVE-2024-37600

An issue was discovered in Mercedes Benz NTG New Telematics Generation 6 through 2021. A possible stack buffer overflow in the Service Broker service affects NTG 6 head units. To perform this attack, physical access to Ethernet pins of the head unit base board is needed. With a static IP address,...

6.8CVSS0.0033EPSS
Exploits0References1
CVE
CVE
added 2025/02/13 12:0 a.m.53 views

CVE-2024-37600

CVE-2024-37600 concerns Mercedes-Benz NTG (MBUX) head units (6 through 2021) with a stack buffer overflow in the Service Broker service (MoCCA). Exploitation requires physical access to the head unit’s base-board Ethernet pins and a static IP on the internal network; an attacker can send crafted ...

6.8CVSS7.1AI score0.0033EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/01/17 12:0 a.m.8 views

PT-2025-1230 · Mercedes Benz · Mbux +1

Name of the Vulnerable Software and Affected Versions: Mercedes-Benz head-unit NTG6 Description: The issue is related to the Mercedes-Benz head-unit NTG6, which has Ethernet pins on the Base Board to connect the module CSB. An attacker can connect to these pins and gain access to the internal...

4.9CVSS8.4AI score0.00463EPSS
Exploits0References10
Rows per page
Query Builder