CVE-2023-28905

A heap buffer overflow in the image processing binary of the MIB3 infotainment unit allows an attacker to execute arbitrary code on it. The vulnerability was originally discovered in Skoda Superb III car with MIB3 infotainment unit OEM part number 3V0035820. The list of affected MIB3 OEM part...

CVE-2023-28902 Denial of Service via integer underflow in picserver

An integer underflow in the image processing binary of the MIB3 infotainment unit allows an attacker with local access to the vehicle to cause denial-of-service of the infotainment system. The vulnerability was originally discovered in Skoda Superb III car with MIB3 infotainment unit OEM part...

CVE-2023-28902

CVE-2023-28902 describes an integer underflow in the image processing binary of the MIB3 infotainment unit, allowing a local-attacker to cause denial-of-service of the infotainment system. The vulnerability was first identified in Skoda Superb III with MIB3 OEM part 3V0035820; affected MIB3 OEM p...

CVE-2023-28905 Heap buffer overflow in picserver

A heap buffer overflow in the image processing binary of the MIB3 infotainment unit allows an attacker to execute arbitrary code on it. The vulnerability was originally discovered in Skoda Superb III car with MIB3 infotainment unit OEM part number 3V0035820. The list of affected MIB3 OEM part...

CVE-2023-28905

CVE-2023-28905 describes a heap buffer overflow in the image-processing binary of the Volkswagen MIB3 infotainment unit (notably the Skoda Superb III context) that allows arbitrary code execution. Affected component: MIB3 infotainment unit image processing binary; root cause: heap-based overflow....

CVE-2023-28905 Heap buffer overflow in picserver

A heap buffer overflow in the image processing binary of the MIB3 infotainment unit allows an attacker to execute arbitrary code on it. The vulnerability was originally discovered in Skoda Superb III car with MIB3 infotainment unit OEM part number 3V0035820. The list of affected MIB3 OEM part...

CVE-2023-28909 Integer Overflow Leading to MTU Bypass

A specific flaw exists within the Bluetooth stack of the MIB3 unit. The issue results from the lack of proper validation of user-supplied data, which can result in an integer overflow when receiving fragmented HCI packets on a channel. An attacker can leverage this vulnerability to bypass the MTU...

CVE-2023-28909 Integer Overflow Leading to MTU Bypass

A specific flaw exists within the Bluetooth stack of the MIB3 unit. The issue results from the lack of proper validation of user-supplied data, which can result in an integer overflow when receiving fragmented HCI packets on a channel. An attacker can leverage this vulnerability to bypass the MTU...

CVE-2023-28909

CVE-2023-28909 describes a vulnerability in the Bluetooth stack of the Volkswagen MIB3 infotainment unit. The flaw arises from insufficient validation of user-supplied data, causing an integer overflow when receiving fragmented HCI packets on a channel. An attacker can bypass the MTU check on a f...

CVE-2023-28912 Cleartext Phonebook Information

The MIB3 unit stores the synchronized phone contact book in clear-text, allowing an attacker with either code execution privilege on the system or physical access to the system to obtain vehicle owner's contact data. The vulnerability was originally discovered in Skoda Superb III car with MIB3...

CVE-2023-28912 Cleartext Phonebook Information

The MIB3 unit stores the synchronized phone contact book in clear-text, allowing an attacker with either code execution privilege on the system or physical access to the system to obtain vehicle owner's contact data. The vulnerability was originally discovered in Skoda Superb III car with MIB3...

CVE-2023-28912

The CVE-2023-28912 issue affects the VW/Skoda MIB3 infotainment unit (notably in Skoda Superb III with OEM part 3V0035820). The root cause is storing the synchronized phone contact book in clear text, enabling an attacker with system code execution privileges or physical access to exfiltrate vehi...

CVE-2023-29113 A lack of access control in custom IPC mechanism

The MIB3 infotainment unit used in Skoda and Volkswagen vehicles does not incorporate any privilege separation for the proprietary inter-process communication mechanism, leaving attackers with presence in the system an ability to undermine access control restrictions implemented at the operating...

CVE-2023-29113

CVE-2023-29113 impacts the MIB3 infotainment unit used in Skoda/Volkswagen vehicles. The root cause is lack of privilege separation in the unit’s proprietary inter-process communication, enabling a local attacker with system presence to undermine OS-level access controls. The issue was first iden...

PT-2025-27313 · Volkswagen · Mib3

Name of the Vulnerable Software and Affected Versions: MIB3 unit affected versions not specified Description: A specific flaw exists within the Bluetooth stack of the MIB3 unit. The issue results from the lack of proper validation of user-supplied data, which can result in an integer overflow whe...

PT-2025-27307 · Mib3 · Mib3

Name of the Vulnerable Software and Affected Versions: MIB3 Infotainment Unit affected versions not specified Description: An integer overflow in the image processing binary of the MIB3 infotainment unit allows an attacker with local access to the vehicle to cause a denial-of-service of the...

PT-2025-27309 · Volkswagen · Mib3

Name of the Vulnerable Software and Affected Versions: MIB3 infotainment unit affected versions not specified Description: A heap buffer overflow in the image processing binary of the MIB3 infotainment unit allows an attacker to execute arbitrary code on it. The issue was originally discovered in...

PT-2025-27306 · Volkswagen · Mib3

Name of the Vulnerable Software and Affected Versions: MIB3 infotainment unit affected versions not specified Description: An integer underflow in the image processing binary of the MIB3 infotainment unit allows an attacker with local access to the vehicle to cause denial-of-service of the...

PT-2025-27316 · Mib3 · Mib3

Name of the Vulnerable Software and Affected Versions: MIB3 unit affected versions not specified Description: The issue concerns the storage of the synchronized phone contact book in clear-text by the MIB3 unit. This allows an attacker with either code execution privilege on the system or physica...

PT-2025-27317 · Volkswagen · Mib3

Name of the Vulnerable Software and Affected Versions: MIB3 infotainment unit affected versions not specified Description: The MIB3 infotainment unit used in Skoda and Volkswagen vehicles lacks privilege separation for its proprietary inter-process communication mechanism. This allows attackers...