CVE-2025-63895

An issue in the Bluetooth firmware of JXL 9 Inch Car Android Double Din Player Android v12.0 allows attackers to cause a Denial of Service DoS via sending a crafted Link Manager Protocol LMP packet...

CVE-2021-23908

An issue was discovered in the Headunit NTG6 in the MBUX Infotainment System on Mercedes-Benz vehicles through 2021. A type confusion issue affects MultiSvSetAttributes in the HiQnet Protocol, leading to remote code execution...

CVE-2024-46442

An issue in the BYD Dilink Headunit System v3.0 to v4.0 allows attackers to bypass authentication via a bruteforce attack...

BYD Dilink Headunit System 安全漏洞

BYD Dilink Headunit System is an in-vehicle operating system of the Chinese company BYD BYD. A security vulnerability exists in BYD Dilink Headunit System version v3.0 to v4.0. An attacker can exploit the vulnerability to bypass authentication via brute force attack...

CVE-2024-39339

A vulnerability has been discovered in all versions of Smartplay headunits, which are widely used in Suzuki and Toyota cars. This misconfiguration can lead to information disclosure, leaking sensitive details such as diagnostic log traces, system logs, headunit passwords, and personally...

CVE-2024-39339

A vulnerability has been discovered in all versions of Smartplay headunits, which are widely used in Suzuki and Toyota cars. This misconfiguration can lead to information disclosure, leaking sensitive details such as diagnostic log traces, system logs, headunit passwords, and personally...

CVE-2024-39339

CVE-2024-39339 affects all versions of Smartplay headunits used in Suzuki and Toyota vehicles. The issue is described as a misconfiguration that leads to information disclosure, exposing diagnostic log traces, system logs, headunit passwords, and PII. The available documents provide the impact as...

PT-2024-28457 · Unknown · Smartplay Headunits

Name of the Vulnerable Software and Affected Versions: Smartplay headunits affected versions not specified Description: A misconfiguration in Smartplay headunits can lead to information disclosure, potentially leaking sensitive details such as diagnostic log traces, system logs, headunit password...

CVE-2021-23906

An issue was discovered in the Headunit NTG6 in the MBUX Infotainment System on Mercedes-Benz vehicles through 2021. A Message Length is not checked in the HiQnet Protocol, leading to remote code execution...

CVE-2021-23906

An issue was discovered in the Headunit NTG6 in the MBUX Infotainment System on Mercedes-Benz vehicles through 2021. A Message Length is not checked in the HiQnet Protocol, leading to remote code execution...

CVE-2021-23907

An issue was discovered in the Headunit NTG6 in the MBUX Infotainment System on Mercedes-Benz vehicles through 2021. The count in MultiSvGet, GetAttributes, and MultiSvSet is not checked in the HiQnet Protocol, leading to remote code execution...

CVE-2021-23908

An issue was discovered in the Headunit NTG6 in the MBUX Infotainment System on Mercedes-Benz vehicles through 2021. A type confusion issue affects MultiSvSetAttributes in the HiQnet Protocol, leading to remote code execution...

CVE-2021-23907

An issue was discovered in the Headunit NTG6 in the MBUX Infotainment System on Mercedes-Benz vehicles through 2021. The count in MultiSvGet, GetAttributes, and MultiSvSet is not checked in the HiQnet Protocol, leading to remote code execution...

Remote code execution

An issue was discovered in the Headunit NTG6 in the MBUX Infotainment System on Mercedes-Benz vehicles through 2021. A Message Length is not checked in the HiQnet Protocol, leading to remote code execution...

Remote code execution

An issue was discovered in the Headunit NTG6 in the MBUX Infotainment System on Mercedes-Benz vehicles through 2021. The count in MultiSvGet, GetAttributes, and MultiSvSet is not checked in the HiQnet Protocol, leading to remote code execution...

CVE-2021-23908

The CVE-2021-23908 entry concerns Mercedes-Benz MBUSA’s MBUX Infotainment System, specifically Headunit NTG6. The vulnerability is a type confusion in the HiQnet Protocol’s MultiSvSetAttributes function, which can lead to remote code execution. Documents in the connected set confirm affected prod...

CVE-2021-23907

CVE-2021-23907 affects Mercedes-Benz MBUX Headunit NTG6 (through 2021). The issue stems from the HiQnet Protocol: counts in MultiSvGet, GetAttributes, and MultiSvSet are not checked, enabling remote code execution over the network. Reported CVSS vectors indicate a high/critical impact (CVSS v3.1 ...

CVE-2021-23907

An issue was discovered in the Headunit NTG6 in the MBUX Infotainment System on Mercedes-Benz vehicles through 2021. The count in MultiSvGet, GetAttributes, and MultiSvSet is not checked in the HiQnet Protocol, leading to remote code execution...

CVE-2021-23906

CVE-2021-23906 affects Mercedes-Benz Headunit NTG6 (MBUX Infotainment System) through 2021. A message length in the HiQnet Protocol is not checked, enabling remote code execution. No exploitation/vector details are provided in the sources; no remediation version is stated.

CVE-2021-23906

An issue was discovered in the Headunit NTG6 in the MBUX Infotainment System on Mercedes-Benz vehicles through 2021. A Message Length is not checked in the HiQnet Protocol, leading to remote code execution...