CVE-2023-28897 Information

Description

The secret value used for access to critical UDS services of the MIB3 infotainment is hardcoded in the firmware.

Vulnerability discovered on Škoda Superb III (3V3) - 2.0 TDI manufactured in 2022.

Reference

https://asrg.io/security-advisories/cve-2023-28897