19 matches found
EUVD-2018-3509
Malware in sbrugna...
EUVD-2018-3508
Malware in sbrugna...
EUVD-2018-3507
Malware in sbrugna...
Vgate iCar 2 Wi-Fi OBD2 Dongle Unencrypted Data Transfer Vulnerability
Vgate iCar 2 Wi-Fi OBD2 Dongle is an automotive fault detection device from VgateTechnology, China. A security vulnerability exists in the Vgate iCar 2 Wi-Fi OBD2 Dongle, which stems from the program's failure to encrypt data packets passed between the iOS or Android app and the OBD dongle, and t...
Vgate iCar 2 Wi-Fi OBD2 Dongle Authentication Bypass Vulnerability
Vgate iCar 2 Wi-Fi OBD2 Dongle is an automotive fault detection device from VgateTechnology, China. An authentication bypass vulnerability exists in the Vgate iCar 2 Wi-Fi OBD2 Dongle, which stems from the fact that the wireless LAN that the device opens is not protected by an encrypted or...
Vgate iCar 2 Wi-Fi OBD2 Dongle Unauthenticated Access Vulnerability
Vgate iCar 2 Wi-Fi OBD2 Dongle is an automotive fault detection device from VgateTechnology, China. A security vulnerability exists in the Vgate iCar 2 Wi-Fi OBD2 Dongle. The vulnerability can be exploited by an attacker to access the data bus e.g. CAN via a local Wi-Fi network...
Authentication flaw
An issue was discovered on Vgate iCar 2 Wi-Fi OBD2 Dongle devices. The dongle opens an unprotected wireless LAN that cannot be configured with encryption or a password. This enables anyone within the range of the WLAN to connect to the network without authentication...
CVE-2018-11478
An issue was discovered on Vgate iCar 2 Wi-Fi OBD2 Dongle devices. The OBD port is used to receive measurement data and debug information from the car. This on-board diagnostics feature can also be used to send commands to the car different for every vendor / car product line / car. No...
Design/Logic Flaw
An issue was discovered on Vgate iCar 2 Wi-Fi OBD2 Dongle devices. The OBD port is used to receive measurement data and debug information from the car. This on-board diagnostics feature can also be used to send commands to the car different for every vendor / car product line / car. No...
Design/Logic Flaw
An issue was discovered on Vgate iCar 2 Wi-Fi OBD2 Dongle devices. The data packets that are sent between the iOS or Android application and the OBD dongle are not encrypted. The combination of this vulnerability with the lack of wireless network protection exposes all transferred car data to the...
CVE-2018-11476
An issue was discovered on Vgate iCar 2 Wi-Fi OBD2 Dongle devices. The dongle opens an unprotected wireless LAN that cannot be configured with encryption or a password. This enables anyone within the range of the WLAN to connect to the network without authentication...
CVE-2018-11477
An issue was discovered on Vgate iCar 2 Wi-Fi OBD2 Dongle devices. The data packets that are sent between the iOS or Android application and the OBD dongle are not encrypted. The combination of this vulnerability with the lack of wireless network protection exposes all transferred car data to the...
CVE-2018-11478
An issue was discovered on Vgate iCar 2 Wi-Fi OBD2 Dongle devices. The OBD port is used to receive measurement data and debug information from the car. This on-board diagnostics feature can also be used to send commands to the car different for every vendor / car product line / car. No...
CVE-2018-11476
An issue was discovered on Vgate iCar 2 Wi-Fi OBD2 Dongle devices. The dongle opens an unprotected wireless LAN that cannot be configured with encryption or a password. This enables anyone within the range of the WLAN to connect to the network without authentication...
CVE-2018-11477
CVE-2018-11477 affects Vgate iCar 2 Wi‑Fi OBD2 Dongle. The issue is that data packets between the mobile apps (iOS/Android) and the dongle are not encrypted, and there is a lack of wireless network protection. This potentially allows an attacker on the same network to access transferred car data....
CVE-2018-11477
An issue was discovered on Vgate iCar 2 Wi-Fi OBD2 Dongle devices. The data packets that are sent between the iOS or Android application and the OBD dongle are not encrypted. The combination of this vulnerability with the lack of wireless network protection exposes all transferred car data to the...
CVE-2018-11478
The CVE affects the Vgate iCar 2 Wi‑Fi OBD2 Dongle where the OBD port can be accessed over a local Wi‑Fi network without authentication, enabling unauthenticated access to the car data bus (e.g., CAN). The issue arises from missing authentication for OBD communications; impact is exposure of meas...
CVE-2018-11476
The CVE-2018-11476 entry concerns the Vgate iCar 2 Wi‑Fi OBD2 Dongle, where the device opens an unprotected WLAN that cannot be configured with encryption or a password. This allows anyone within WLAN range to join without authentication, constituting an authentication bypass risk in the affected...
Vgate iCar2 WiFi OBD2 Dongle Inadequate Access Protections
SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Unprotected WiFi access & Unencrypted data transfer product: Vgate iCar 2 WiFi OBD2 Dongle vulnerable version: Vgate iCar 2 WiFi OBD2 Dongle fixed version: - CVE number:...