Daimler Vulnerabilidad

Cronología

Escribe

Vehicle Software	16

Producto

Daimler Mercedes HERMES	8
Daimler Mercedes MBUX	6
Daimler Mercedes-Benz C Class AMG Premium Plus c22 ...	2

Contramedidas

Official Fix	6
Temporary Fix	0
Workaround	0
Unavailable	2
Not Defined	8

Explotabilidad

High	0
Functional	0
Proof-of-Concept	2
Unproven	0
Not Defined	14

Vector de acceso

Not Defined	0
Physical	12
Local	4
Adjacent	0
Network	0

Autenticación

Not Defined	0
High	0
Low	2
None	14

La interacción del usuario

Not Defined	0
Required	0
None	16

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	2
≤4	4
≤5	6
≤6	2
≤7	0
≤8	2
≤9	0
≤10	0

CVSSv3 Temp

≤1	0
≤2	0
≤3	2
≤4	4
≤5	6
≤6	2
≤7	2
≤8	0
≤9	0
≤10	0

VulDB

≤1	0
≤2	2
≤3	0
≤4	8
≤5	2
≤6	4
≤7	0
≤8	0
≤9	0
≤10	0

NVD

≤1	0
≤2	0
≤3	2
≤4	0
≤5	6
≤6	0
≤7	0
≤8	0
≤9	2
≤10	0

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Proveedor

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Explotar día 0

<1k	14
<2k	0
<5k	0
<10k	0
<25k	2
<50k	0
<100k	0
≥100k	0

Explotar hoy

<1k	16
<2k	0
<5k	0
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Explotar el volumen del mercado

🔴 CTI Ocupaciones

Affected Products (6): Mercedes-Benz C Class AMG Premium Plus c220 BlueTec (1), Mercedes Comand (1), Mercedes HERMES (6), Mercedes MBUX (5), Mercedes Me App (1), Mercedes XENTRY Retail Data Storage (1)

Fecha de publicación	Base	Temp	Vulnerabilidad	Prod	Exp	Con	EPSS	CTI	CVE
2023-01-15	6.4	6.1	Daimler Mercedes XENTRY Retail Data Storage API Request reboot denegación de servicio	Vehicle Software	Proof-of-Concept	Not Defined	0.00167	0.00	CVE-2023-23590
2021-05-14	5.3	5.1	Daimler Mercedes MBUX HERMES 2.1 RemoteDiagnosisApp divulgación de información	Vehicle Software	Not Defined	Official Fix	0.00577	0.03	CVE-2021-23910
2021-05-14	6.2	5.9	Daimler Mercedes MBUX HERMES 2.1 Local Privilege Escalation	Vehicle Software	Not Defined	Official Fix	0.03488	0.04	CVE-2021-23909
2021-05-14	3.9	3.8	Daimler Mercedes MBUX Headunit NTG6 MultiSvSetAttributes escalada de privilegios	Vehicle Software	Not Defined	Official Fix	0.02938	0.02	CVE-2021-23908
2021-05-14	3.9	3.8	Daimler Mercedes MBUX Headunit NTG6 MultiSvSet Local Privilege Escalation	Vehicle Software	Not Defined	Official Fix	0.03488	0.00	CVE-2021-23907
2021-05-14	3.9	3.8	Daimler Mercedes MBUX Headunit NTG6 Local Privilege Escalation	Vehicle Software	Not Defined	Official Fix	0.01793	0.00	CVE-2021-23906
2020-11-16	2.2	2.2	Daimler Mercedes HERMES Debug Interface divulgación de información	Vehicle Software	Not Defined	Not Defined	0.00065	0.04	CVE-2019-19563
2020-11-16	4.2	4.2	Daimler Mercedes HERMES autenticación débil	Vehicle Software	Not Defined	Not Defined	0.00100	0.00	CVE-2019-19562
2020-11-16	2.2	2.2	Daimler Mercedes HERMES Debug Interface divulgación de información	Vehicle Software	Not Defined	Not Defined	0.00065	0.00	CVE-2019-19561
2020-11-16	4.2	4.2	Daimler Mercedes HERMES Debug Interface autenticación débil	Vehicle Software	Not Defined	Not Defined	0.00100	0.00	CVE-2019-19560

5 no se muestran más entradas

🔒 Login Required

You need to signup and login to see more of the remaining 5 results.

◂ AnteriorVisión De ConjuntoPróximo ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!