CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-28896

Access to critical Unified Diagnostics Services (UDS) of the Modular Infotainment Platform 3 (MIB3) infotainment is transmitted via Controller Area Network (CAN) bus in a form that can be easily decoded by attackers with physical access to the vehicle. Vulnerability discovered on Škoda Superb III (3V3) - 2.0 TDI manufactured in 2022.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 7.2%

CVSS Severity

CVSS v3 Score 3.3

References

https://asrg.io/security-advisories/cve-2023-28896/
https://asrg.io/security-advisories/cve-2023-28896/

Products affected by CVE-2023-28896

Preh » Mib3 » Version: N/A

cpe:2.3:h:preh:mib3:-
Preh » Mib3 Firmware » Version: N/A

cpe:2.3:o:preh:mib3_firmware:-
Preh » Mib3 Firmware » Version: 0304

cpe:2.3:o:preh:mib3_firmware:0304

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-28896

Products

Pricing

Contact Us