CNNVD-202506-3630 Information

CNNVD ID

CNNVD-202506-3630

Related CVE

CVE-2023-28907

• CNNVD Published: 2025-06-28

Description (Chinese)

Volkswagen MIB3 Infotainment是德国大众汽车（Volkswagen）公司的一款汽车上的信息娱乐系统。 Volkswagen MIB3 Infotainment存在安全漏洞，该漏洞源于CPU核心间缺乏内存隔离，可能导致攻击者通过主操作系统破坏负责CAN消息处理的CPU核心。

Description (English)

Volkswagen MIB3 Information is an information and entertainment system in a car owned by Volkswagen. There is a security gap in Volkswagen MIB3 Information, which stems from the lack of RAM segregation between the CPU core, which could lead to the attacker disrupting the CPU core, which handles CAN messages, through the primary operating system.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

大众汽车

Published

2025-06-28

Last Modified

2026-02-24

References

https://asrg.io/security-advisories/vulnerabilities-in-volkswagen-mib3-infotainment-part-2/ https://i.blackhat.com/EU-24/Presentations/EU-24-Parnishchev-OverTheAirVW.pdf https://pcacybersecurity.com/resources/advisory/vulnerabilities-in-vw-mib3-infotainment-2 https://access.redhat.com/security/cve/cve-2023-28907