CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-34400

Mercedes-Benz head-unit NTG6 contains functions to import or export profile settings over USB. In case of parsing file, service try to define header inside the file and convert it to null-terminated string. If character is missed, will return null pointer.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 31.5%

CVSS Severity

CVSS v3 Score 7.5

References

https://securelist.com/mercedes-benz-head-unit-security-research/115218/

Products affected by CVE-2023-34400

Mercedes-Benz » Headunit Ntg6 Mercedes-Benz User Experience » Version: 2021

cpe:2.3:a:mercedes-benz:headunit_ntg6_mercedes-benz_user_experience:2021

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-34400

Products

Pricing

Contact Us