CNNVD-202506-3637 Information
CNNVD ID
CNNVD-202506-3637
Related CVE
- CNNVD Published: 2025-06-28
Description (Chinese)
Volkswagen MIB3 Infotainment是德国大众汽车(Volkswagen)公司的一款汽车上的信息娱乐系统。 Volkswagen MIB3 Infotainment存在安全漏洞,该漏洞源于网络服务中的命令注入,可能导致系统内攻击者提升权限并获得系统管理访问权限。
Description (English)
Volkswagen MIB3 Information is an information and entertainment system in a car owned by Volkswagen. Volkswagen MIB3 Information has a security loophole, which originates from the infusion of commands in web services, which may lead to enhanced access to system attackers and system management access.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
大众汽车
Published
2025-06-28
Last Modified
2026-02-24
References
https://asrg.io/security-advisories/vulnerabilities-in-volkswagen-mib3-infotainment-part-2/ https://i.blackhat.com/EU-24/Presentations/EU-24-Parnishchev-OverTheAirVW.pdf https://pcacybersecurity.com/resources/advisory/vulnerabilities-in-vw-mib3-infotainment-2 https://access.redhat.com/security/cve/cve-2023-28906
Patch
https://www.volkswagen.co.uk/en.html
Share on: