14 matches found
EUVD-2020-26713
Malware in sbrugna...
CVE-2020-5551
Toyota 2017 Model Year DCU Display Control Unit allows an unauthenticated attacker within Bluetooth range to cause a denial of service attack and/or execute an arbitrary command. The affected DCUs are installed in Lexus LC, LS, NX, RC, RC F, TOYOTA CAMRY, and TOYOTA SIENNA manufactured in the...
CVE-2019-14951
The Telenav Scout GPS Link app 1.x for iOS, as used with Toyota and Lexus vehicles, has an incorrect protection mechanism against brute-force attacks on the authentication process, which makes it easier for attackers to obtain multimedia-screen access via port 7050 on the cellular network, as...
lexus-annemasse.fr Cross Site Scripting vulnerability OBB-3869242
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
lexus.com.sa Cross Site Scripting vulnerability OBB-3817759
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
lexusjapan.com Cross Site Scripting vulnerability OBB-3192977
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Weak password vulnerability in Netoray NSG Internet behavior management system (CNVD-2021-36245)
Lexus Technologies Beijing Co., Ltd. specializes in Layer 47 based application and protocol analysis and related product development, providing Internet behavior management, APT detection, and next-generation firewall products. A weak password vulnerability exists in the Netoray NSG Internet...
news.lexus.pt Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1150146 Security Researcher Papix2020 Helped patch 18 vulnerabilities Received 1 Coordinated Disclosure badges Received 2 recommendations , a holder of 1 badges for responsible and coordinated disclosure, found a security vulnerability affecting news.lexus.pt website and i...
CVE-2020-5551
Toyota 2017 Model Year DCU Display Control Unit allows an unauthenticated attacker within Bluetooth range to cause a denial of service attack and/or execute an arbitrary command. The affected DCUs are installed in Lexus LC, LS, NX, RC, RC F, TOYOTA CAMRY, and TOYOTA SIENNA manufactured in the...
Design/Logic Flaw
Toyota 2017 Model Year DCU Display Control Unit allows an unauthenticated attacker within Bluetooth range to cause a denial of service attack and/or execute an arbitrary command. The affected DCUs are installed in Lexus LC, LS, NX, RC, RC F, TOYOTA CAMRY, and TOYOTA SIENNA manufactured in the...
CVE-2020-5551
The CVE-2020-5551 entry describes a vulnerability in Toyota 2017 Model Year DCU (Display Control Unit) exposed in Lexus (LC, LS, NX, RC, RC F), Toyota Camry, and Toyota Sienna (regions outside Japan) built Oct 2016–Oct 2019. An unauthenticated attacker within Bluetooth range can trigger a DoS or ...
CVE-2019-14951
CVE-2019-14951 affects the Telenav Scout GPS Link iOS app (1.x) used with Toyota/Lexus vehicles. Root cause is an incorrect brute‑force protection on the authentication process, enabling potential access to multimedia-screen functionality over port 7050 on the cellular network, demonstrated by a ...
CVE-2019-14951
The Telenav Scout GPS Link app 1.x for iOS, as used with Toyota and Lexus vehicles, has an incorrect protection mechanism against brute-force attacks on the authentication process, which makes it easier for attackers to obtain multimedia-screen access via port 7050 on the cellular network, as...
butlerlexus.com XSS vulnerability
Vulnerable URL: http://www.butlerlexus.com/VehicleSearchResults?search=new%22%3E%3Csvg/onload=confirm%28/xssposed/%29// Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 5017568 Google Pagerank| 3 VIP website...