19 matches found
EUVD-2021-10833
Malware in sbrugna...
CVE-2021-23910
An issue was discovered in HERMES 2.1 in the MBUX Infotainment System on Mercedes-Benz vehicles through 2021. There is an out-of-bounds array access in RemoteDiagnosisApp...
CVE-2019-19563
A misconfiguration in the debug interface in Mercedes-Benz HERMES 2.1 allows an attacker with direct physical access to device hardware to obtain cellular modem information...
CVE-2021-23909
An issue was discovered in HERMES 2.1 in the MBUX Infotainment System on Mercedes-Benz vehicles through 2021. The SH2 MCU allows remote code execution...
CVE-2021-23910
An issue was discovered in HERMES 2.1 in the MBUX Infotainment System on Mercedes-Benz vehicles through 2021. There is an out-of-bounds array access in RemoteDiagnosisApp...
Remote code execution
An issue was discovered in HERMES 2.1 in the MBUX Infotainment System on Mercedes-Benz vehicles through 2021. The SH2 MCU allows remote code execution...
Out-of-bounds
An issue was discovered in HERMES 2.1 in the MBUX Infotainment System on Mercedes-Benz vehicles through 2021. There is an out-of-bounds array access in RemoteDiagnosisApp...
CVE-2021-23910
An issue was discovered in HERMES 2.1 in the MBUX Infotainment System on Mercedes-Benz vehicles through 2021. There is an out-of-bounds array access in RemoteDiagnosisApp...
CVE-2021-23910
CVE-2021-23910 affects Mercedes‑Benz’s HERMES 2.1 in the MBUX Infotainment System (through 2021). The vulnerability is a flaw in the RemoteDiagnosisApp caused by an out‑of‑bounds array access. According to the sources in the connected documents, the issue is exploitable over the network with no a...
CVE-2021-23909
An issue was discovered in HERMES 2.1 in the MBUX Infotainment System on Mercedes-Benz vehicles through 2021. The SH2 MCU allows remote code execution...
CVE-2021-23909
CVE-2021-23909 affects Mercedes-Benz MBUX Infotainment System on the Hermes-based SH2 MCU (Hermes 2.1). The issue enables remote code execution over a network, via the SH2 MCU, per the vulnerability entry. The original description and NVD entry indicate a high/severe risk, with a CVSSv3.1 base sc...
CVE-2019-19563
A misconfiguration in the debug interface in Mercedes-Benz HERMES 2.1 allows an attacker with direct physical access to device hardware to obtain cellular modem information...
CVE-2019-19563
A misconfiguration in the debug interface in Mercedes-Benz HERMES 2.1 allows an attacker with direct physical access to device hardware to obtain cellular modem information...
CVE-2019-19562
An authentication bypass in the debug interface in Mercedes-Benz HERMES 2.1 allows an attacker with physical access to device hardware to obtain system information...
Design/Logic Flaw
A misconfiguration in the debug interface in Mercedes-Benz HERMES 2.1 allows an attacker with direct physical access to device hardware to obtain cellular modem information...
Authentication flaw
An authentication bypass in the debug interface in Mercedes-Benz HERMES 2.1 allows an attacker with physical access to device hardware to obtain system information...
CVE-2019-19563
A misconfiguration in the debug interface in Mercedes-Benz HERMES 2.1 allows an attacker with direct physical access to device hardware to obtain cellular modem information...
CVE-2019-19562
The CVE-2019-19562 entry concerns a Mercedes-Benz HERMES 2.1 Telematics Control Unit where a vulnerability in the debug interface enables an authentication bypass . An attacker with physical access to the device hardware could obtain system information. Connected documents reiterate the same desc...
CVE-2019-19562
An authentication bypass in the debug interface in Mercedes-Benz HERMES 2.1 allows an attacker with physical access to device hardware to obtain system information...