Vulnerability Details CVE-2023-39075
Renault Zoe EV 2021 automotive infotainment system versions 283C35202R to 283C35519R (builds 11.10.2021 to 16.01.2023) allows attackers to crash the infotainment system by sending arbitrary USB data via a USB device.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 8.4%
CVSS Severity
CVSS v3 Score 4.6
References
- https://blog.dhjeong.kr/posts/automotive/2023/12/how-to-fuzzing-realcars/
- https://blog.dhjeong.kr/posts/vuln/202307/renault-zoe/
- https://blog.jhyeon.dev/posts/vuln/202307/renault-zoe/
- https://nvd.nist.gov/vuln/detail/CVE-2023-39075
- https://blog.dhjeong.kr/posts/automotive/2023/12/how-to-fuzzing-realcars/
- https://blog.dhjeong.kr/posts/vuln/202307/renault-zoe/
- https://blog.jhyeon.dev/posts/vuln/202307/renault-zoe/
- https://nvd.nist.gov/vuln/detail/CVE-2023-39075
Products affected by CVE-2023-39075
-
cpe:2.3:h:renault:zoe_ev_2021:-
-
cpe:2.3:o:renault:zoe_ev_2021_firmware:11.10.2021
-
cpe:2.3:o:renault:zoe_ev_2021_firmware:16.01.2023