CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-8539

Kia Motors Head Unit with Software version: SOP.003.30.18.0703, SOP.005.7.181019, and SOP.007.1.191209 may allow an attacker to inject unauthorized commands, by executing the micomd executable deamon, to trigger unintended functionalities. In addition, this executable may be used by an attacker to inject commands to generate CAN frames that are sent into the M-CAN bus (Multimedia CAN bus) of the vehicle.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.064

EPSS Ranking 90.6%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 4.6

References

Products affected by CVE-2020-8539

Kia » Head Unit » Version: N/A

cpe:2.3:h:kia:head_unit:-
Kia » Head Unit Firmware » Version: sop.003.30.18.0703

cpe:2.3:o:kia:head_unit_firmware:sop.003.30.18.0703
Kia » Head Unit Firmware » Version: sop.005.7.181019

cpe:2.3:o:kia:head_unit_firmware:sop.005.7.181019
Kia » Head Unit Firmware » Version: sop.007.1.191209

cpe:2.3:o:kia:head_unit_firmware:sop.007.1.191209

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-8539

Products

Pricing

Contact Us