ГлавнаяУязвимости → CVE-2023-34400
7.5высокая

CVE-2023-34400

Описание

Mercedes-Benz head-unit NTG6 contains functions to import or export profile settings over USB. In case of parsing file, service try to define header inside the file and convert it to null-terminated string. If character is missed, will return null pointer.

Затрагиваемое ПО
Mercedes-benz Headunit ntg6 mercedes-benz user experience
CVSS
Балл7.5 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Источники
https://securelist.com/mercedes-benz-head-unit-security-research/115218/