Описание
Mercedes-Benz head-unit NTG6 contains functions to import or export profile settings over USB. In case of parsing file, service try to define header inside the file and convert it to null-terminated string. If character is missed, will return null pointer.
Ссылки
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2021 (включая)
cpe:2.3:a:mercedes-benz:headunit_ntg6_mercedes-benz_user_experience:*:*:*:*:*:*:*:*
EPSS
Процентиль: 49%
0.00257
Низкий
7.5 High
CVSS3
Дефекты
CWE-476
Связанные уязвимости
CVSS3: 7.5
github
12 месяцев назад
Mercedes-Benz head-unit NTG6 contains functions to import or export profile settings over USB. In case of parsing file, service try to define header inside the file and convert it to null-terminated string. If character is missed, will return null pointer.
EPSS
Процентиль: 49%
0.00257
Низкий
7.5 High
CVSS3
Дефекты
CWE-476