CNNVD-202508-086 Information

CNNVD ID

CNNVD-202508-086

Related CVE

CVE-2025-8474

• CNNVD Published: 2025-08-01

Description (Chinese)

Alpine iLX-507是美国Alpine公司的一个多媒体接收器。 Alpine iLX-507存在安全漏洞，该漏洞源于Apple CarPlay协议实现中缺少长度验证，可能导致栈缓冲区溢出和代码执行。

Description (English)

Alpine iLX-507 is a multimedia receiver for Alpine, United States. There is a security loophole in Alpine iLX-507, which stems from the lack of verification of the length of the Apple CarPlay agreement, which could lead to spills and code enforcement in the buffer zone.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Alpine

Published

2025-08-01

Last Modified

2026-02-24

References

https://www.zerodayinitiative.com/advisories/ZDI-25-763/